Upload 16 files

.gitattributes

@@ -34,3 +34,4 @@ saved_model/**/* filter=lfs diff=lfs merge=lfs -text
 *.zst filter=lfs diff=lfs merge=lfs -text
 *tfevents* filter=lfs diff=lfs merge=lfs -text
 Roboto-VariableFont_wdth,wght.ttf filter=lfs diff=lfs merge=lfs -text
+1.png filter=lfs diff=lfs merge=lfs -text

Dockerfile

@@ -1,31 +1,18 @@
-# syntax=docker/dockerfile:1
 FROM python:3.11-slim
 
-# System deps (jeśli używasz psycopg2-binary, wystarczy ca-certificates)
-RUN apt-get update && apt-get install -y --no-install-recommends \
-    ca-certificates curl && rm -rf /var/lib/apt/lists/*
-
-# Dobre praktyki
-ENV PYTHONDONTWRITEBYTECODE=1
-ENV PYTHONUNBUFFERED=1
-
-# Nie-root user (HF i tak odpala jako uid 1000)
-RUN useradd -m appuser
 WORKDIR /app
 
-# Zależności
 COPY requirements.txt .
 RUN pip install --no-cache-dir -r requirements.txt
 
-# Kod
 COPY . .
 
-# Entrypoint (migracje/init + start)
-COPY entrypoint.sh /entrypoint.sh
-RUN chmod +x /entrypoint.sh
+RUN mkdir -p /data \
+ && chmod -R 777 /data
+# opcjonalnie, jeśli chcesz skopiować istniejący plik: COPY web_invoice_store.json /data/
+# i po nim: RUN chmod 666 /data/web_invoice_store.json
 
-USER appuser
-EXPOSE 7860
+ENV DATA_DIR=/data
+ENV PORT=7860
 
-# UWAGA: zmienne ze Spaces (DATABASE_URL, itp.) będą dostępne dopiero w runtime
-ENTRYPOINT ["/entrypoint.sh"]
+CMD ["python", "server.py"]

gitattributes

@@ -0,0 +1,36 @@
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.arrow filter=lfs diff=lfs merge=lfs -text
+*.bin filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.ckpt filter=lfs diff=lfs merge=lfs -text
+*.ftz filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.h5 filter=lfs diff=lfs merge=lfs -text
+*.joblib filter=lfs diff=lfs merge=lfs -text
+*.lfs.* filter=lfs diff=lfs merge=lfs -text
+*.mlmodel filter=lfs diff=lfs merge=lfs -text
+*.model filter=lfs diff=lfs merge=lfs -text
+*.msgpack filter=lfs diff=lfs merge=lfs -text
+*.npy filter=lfs diff=lfs merge=lfs -text
+*.npz filter=lfs diff=lfs merge=lfs -text
+*.onnx filter=lfs diff=lfs merge=lfs -text
+*.ot filter=lfs diff=lfs merge=lfs -text
+*.parquet filter=lfs diff=lfs merge=lfs -text
+*.pb filter=lfs diff=lfs merge=lfs -text
+*.pickle filter=lfs diff=lfs merge=lfs -text
+*.pkl filter=lfs diff=lfs merge=lfs -text
+*.pt filter=lfs diff=lfs merge=lfs -text
+*.pth filter=lfs diff=lfs merge=lfs -text
+*.rar filter=lfs diff=lfs merge=lfs -text
+*.safetensors filter=lfs diff=lfs merge=lfs -text
+saved_model/**/* filter=lfs diff=lfs merge=lfs -text
+*.tar.* filter=lfs diff=lfs merge=lfs -text
+*.tar filter=lfs diff=lfs merge=lfs -text
+*.tflite filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.wasm filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
+*tfevents* filter=lfs diff=lfs merge=lfs -text
+Roboto-VariableFont_wdth,wght.ttf filter=lfs diff=lfs merge=lfs -text

index.html

@@ -0,0 +1,348 @@
+<!DOCTYPE html>
+<html lang="pl">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>Generator faktur</title>
+  <link rel="preconnect" href="https://fonts.googleapis.com">
+  <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+  <link href="https://fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;600;700&display=swap" rel="stylesheet">
+  <link rel="stylesheet" href="styles.css">
+</head>
+<body>
+  <main class="container">
+    <div class="header-section">
+      <div class="logo-container">
+        <img src="small_logotyp do strony.jpg" alt="Logotyp FakturON!" class="logo">
+        <h1 class="app-title">Generator faktur</h1>
+      </div>
+      <p class="app-description">
+        Strona internetowa, gdzie możesz zupełnie bezpłatnie wystawić fakturę, edytować ją,
+        przeglądać swoje faktury oraz śledzić przychody.
+      </p>
+    </div>
+
+    <section id="auth-section" class="panel">
+
+      <div class="auth-login">
+        <div class="auth-card login-card">
+          <h3>Zaloguj się</h3>
+          <form id="login-form" class="form">
+            <label>
+              Email
+              <input type="email" name="email" autocomplete="email" required>
+            </label>
+            <label>
+              Hasło
+              <input type="password" name="password" autocomplete="current-password" required>
+            </label>
+            <button type="submit">Zaloguj</button>
+            <hr class="form-divider">
+          </form>
+          <p id="login-feedback" class="feedback" aria-live="polite"></p>
+          <div class="auth-actions">
+            <span>Nie masz konta?</span>
+            <button id="show-register-button" type="button" class="ghost-button">Stwórz konto</button>
+          </div>
+          <p id="legacy-login-hint" class="hint hidden"></p>
+        </div>
+      </div>
+    </section>
+
+    <section id="register-section" class="panel hidden">
+      <div class="auth-card register-card">
+        <div class="register-header">
+          <h3>Załóż konto</h3>
+          <button id="back-to-login" type="button" class="link-button">Wróć do logowania</button>
+        </div>
+        <form id="register-form" class="form">
+          <div class="register-fields">
+            <div class="field-grid register-credentials">
+              <label>
+                Email
+                <input type="email" name="email" autocomplete="email" required>
+              </label>
+              <label>
+                Hasło
+                <input type="password" name="password" autocomplete="new-password" required>
+              </label>
+              <label>
+                Powtórz hasło
+                <input type="password" name="confirm_password" autocomplete="new-password" required>
+              </label>
+            </div>
+
+            <div class="field-grid register-company">
+              <label>
+                Nazwa firmy
+                <input type="text" name="company_name" required>
+              </label>
+              <label>
+                Imię i nazwisko właściciela
+                <input type="text" name="owner_name" required>
+              </label>
+              <label>
+                Ulica i numer
+                <input type="text" name="address_line" required>
+              </label>
+              <label>
+                Kod pocztowy
+                <input type="text" name="postal_code" required>
+              </label>
+              <label>
+                Miejscowość
+                <input type="text" name="city" required>
+              </label>
+              <label>
+                NIP
+                <input type="text" name="tax_id" required>
+              </label>
+              <label>
+                Numer konta bankowego
+                <input type="text" name="bank_account" required>
+              </label>
+            </div>
+          </div>
+          <div class="form-actions">
+            <button type="submit">Utwórz konto</button>
+            <button id="cancel-register" type="button" class="link-button">Anuluj</button>
+          </div>
+        </form>
+        <p id="register-feedback" class="feedback"></p>
+        <p class="hint">Dane konta przechowywane są lokalnie na serwerze.</p>
+      </div>
+    </section>
+
+    <section id="app-section" class="panel hidden">
+      <header class="app-header">
+        <div>
+          <h2>Panel faktur</h2>
+          <p id="current-login-label" class="app-subtitle"></p>
+        </div>
+        <nav class="app-nav">
+          <button type="button" class="app-nav-button active" data-view="invoice-builder">Nowa faktura</button>
+          <button type="button" class="app-nav-button" data-view="dashboard">Dashboard</button>
+        </nav>
+        <button id="logout-button" type="button" class="link-button">Wyloguj</button>
+      </header>
+
+      <section id="invoice-builder-section" class="app-view">
+        <section class="business-section">
+          <div class="business-section-header">
+            <h3>Dane sprzedawcy</h3>
+            <div class="business-actions">
+              <button id="toggle-business-form" type="button" class="link-button">Edycja danych</button>
+              <label for="logo-input" class="button secondary">
+                <input id="logo-input" type="file" accept="image/png,image/jpeg" hidden>
+                Wgraj logo
+              </label>
+              <button id="remove-logo-button" type="button" class="link-button hidden">Usuń logo</button>
+            </div>
+          </div>
+          <div id="business-display" class="business-display"></div>
+          <div id="logo-preview" class="logo-preview hidden">
+            <span class="logo-preview-label">Logo sprzedawcy</span>
+            <img id="logo-preview-image" alt="Logo firmy">
+          </div>
+          <p id="logo-feedback" class="feedback"></p>
+          <form id="business-form" class="form hidden">
+            <div class="field-grid">
+              <label>
+                Nazwa firmy
+                <input type="text" name="company_name" required>
+              </label>
+              <label>
+                Imię i nazwisko właściciela
+                <input type="text" name="owner_name" required>
+              </label>
+              <label>
+                Ulica i numer
+                <input type="text" name="address_line" required>
+              </label>
+              <label>
+                Kod pocztowy
+                <input type="text" name="postal_code" required>
+              </label>
+              <label>
+                Miejscowość
+                <input type="text" name="city" required>
+              </label>
+              <label>
+                NIP
+                <input type="text" name="tax_id" required>
+              </label>
+              <label>
+                Numer konta bankowego
+                <input type="text" name="bank_account" required>
+              </label>
+            </div>
+            <div class="form-actions">
+              <button type="submit">Zapisz</button>
+              <button id="cancel-business-update" type="button" class="link-button">Anuluj</button>
+            </div>
+            <p id="business-feedback" class="feedback"></p>
+          </form>
+        </section>
+
+        <form id="invoice-form" class="form">
+          <fieldset>
+            <legend>Informacje o fakturze</legend>
+            <div class="field-grid">
+              <label>
+                Data sprzedaży / wykonania usługi
+                <input type="date" name="saleDate">
+              </label>
+              <label>
+                Termin płatności (dni)
+                <input type="number" name="paymentTerm" min="1" step="1" value="14">
+              </label>
+            </div>
+          </fieldset>
+
+          <fieldset>
+            <legend>Dane nabywcy</legend>
+            <div class="field-grid">
+              <label>
+                Nazwa / Imię i nazwisko
+                <input type="text" name="clientName">
+              </label>
+              <label>
+                NIP
+                <input type="text" name="clientTaxId">
+              </label>
+              <label>
+                Ulica i numer
+                <input type="text" name="clientAddress">
+              </label>
+              <label>
+                Kod pocztowy
+                <input type="text" name="clientPostalCode">
+              </label>
+              <label>
+                Miejscowość
+                <input type="text" name="clientCity">
+              </label>
+              <label>
+                Numer telefonu
+                <input type="tel" name="clientPhone">
+              </label>
+            </div>
+          </fieldset>
+
+          <section class="items-section">
+            <header class="items-header">
+              <h3>Pozycje faktury</h3>
+              <button type="button" id="add-item-button">Dodaj pozycję</button>
+            </header>
+            <div class="items-table-wrapper">
+              <table class="items-table">
+                <thead>
+                  <tr>
+                    <th>Nazwa towaru/usługi</th>
+                    <th>Ilość</th>
+                    <th>Jednostka</th>
+                    <th>Cena jedn. brutto (PLN)</th>
+                    <th>Stawka VAT</th>
+                    <th>Wartość brutto (PLN)</th>
+                    <th></th>
+                  </tr>
+                </thead>
+                <tbody id="items-body"></tbody>
+              </table>
+            </div>
+          </section>
+
+          <div id="totals-container" class="totals">
+            <span id="total-net">Suma netto: 0.00 PLN</span>
+            <span id="total-vat">Kwota VAT: 0.00 PLN</span>
+            <span id="total-gross">Suma brutto: 0.00 PLN</span>
+          </div>
+
+          <section id="rate-summary" class="rate-summary"></section>
+
+          <div id="exemption-note-wrapper" class="hidden">
+            <label for="exemption-reason">Powód zastosowania stawki ZW/0%</label>
+            <select id="exemption-reason" class="form-select">
+              <option value="">Wybierz podstawę zwolnienia...</option>
+            </select>
+            <label for="exemption-note" id="exemption-note-label">Podstawa prawna zwolnienia</label>
+            <textarea id="exemption-note" rows="3" placeholder="np. Art. 43 ust. 1 pkt 19 ustawy o VAT"></textarea>
+          </div>
+
+          <div class="form-actions">
+            <button type="submit" id="save-invoice-button">Generuj fakturę</button>
+            <button id="cancel-edit-invoice" type="button" class="link-button hidden">Anuluj edycję</button>
+          </div>
+        </form>
+
+        <section id="invoice-result" class="panel hidden">
+          <h3>Podgląd faktury</h3>
+          <div id="invoice-output" class="invoice-preview"></div>
+          <button id="download-button" type="button">Pobierz jako plik PDF</button>
+        </section>
+      </section>
+
+      <section id="dashboard-section" class="app-view hidden">
+        <header class="dashboard-header">
+          <div class="filters">
+            <label>
+              Od
+              <input type="date" id="filter-start-date">
+            </label>
+            <label>
+              Do
+              <input type="date" id="filter-end-date">
+            </label>
+            <button type="button" id="clear-filters" class="button secondary">Wyczyść</button>
+          </div>
+          <p id="dashboard-feedback" class="feedback"></p>
+        </header>
+
+        <section class="dashboard-summary">
+          <div class="summary-card">
+            <span class="summary-label">Ostatnie 30 dni</span>
+            <span id="summary-month-count" class="summary-count">0 faktur</span>
+            <span id="summary-month-amount" class="summary-amount">0.00 PLN</span>
+          </div>
+          <div class="summary-card">
+            <span class="summary-label">Bieżący kwartał</span>
+            <span id="summary-quarter-count" class="summary-count">0 faktur</span>
+            <span id="summary-quarter-amount" class="summary-amount">0.00 PLN</span>
+          </div>
+          <div class="summary-card">
+            <span class="summary-label">Bieżący rok</span>
+            <span id="summary-year-count" class="summary-count">0 faktur</span>
+            <span id="summary-year-amount" class="summary-amount">0.00 PLN</span>
+          </div>
+        </section>
+
+        <section class="dashboard-chart">
+          <canvas id="invoices-chart" aria-label="Podsumowanie faktur"></canvas>
+        </section>
+
+        <section class="dashboard-table">
+          <div class="items-table-wrapper">
+            <table class="items-table">
+              <thead>
+                <tr>
+                  <th>Numer</th>
+                  <th>Data wystawienia</th>
+                  <th>Nabywca</th>
+                  <th>Suma brutto</th>
+                  <th>Akcje</th>
+                </tr>
+              </thead>
+              <tbody id="invoices-table-body"></tbody>
+            </table>
+            <p id="invoices-empty" class="hint hidden">Brak faktur do wyświetlenia.</p>
+          </div>
+        </section>
+      </section>
+    </section>
+  </main>
+
+  <script src="https://cdnjs.cloudflare.com/ajax/libs/jspdf/2.5.1/jspdf.umd.min.js" defer></script>
+  <script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.6/dist/chart.umd.min.js" defer></script>
+  <script src="main.js" defer></script>
+</body>
+</html>

main.js

@@ -0,0 +1,2072 @@
+const VAT_OPTIONS = [
+  { value: "23", label: "23%" },
+  { value: "8", label: "8%" },
+  { value: "5", label: "5%" },
+  { value: "0", label: "0% (ZW)" },
+  { value: "ZW", label: "ZW - zwolnione" },
+  { value: "NP", label: "NP - poza zakresem" },
+];
+
+const VAT_RATE_VALUES = {
+  "23": 0.23,
+  "8": 0.08,
+  "5": 0.05,
+  "0": 0,
+  ZW: 0,
+  NP: 0,
+};
+
+const UNIT_OPTIONS = [
+  { value: "szt.", label: "szt." },
+  { value: "godz.", label: "godz." },
+];
+
+const DEFAULT_UNIT = UNIT_OPTIONS[0].value;
+
+const EXEMPTION_REASONS = [
+  {
+    value: "art_43_1_19",
+    label: "Art. 43 ust. 1 pkt 19 ustawy o VAT - usługi medyczne",
+    note: "Art. 43 ust. 1 pkt 19 ustawy o VAT - usługi w zakresie opieki medycznej.",
+  },
+  {
+    value: "art_43_1_18",
+    label: "Art. 43 ust. 1 pkt 18 ustawy o VAT - usługi edukacyjne",
+    note: "Art. 43 ust. 1 pkt 18 ustawy o VAT - usługi edukacyjne w formach przewidzianych w przepisach.",
+  },
+  {
+    value: "art_43_1_37",
+    label: "Art. 43 ust. 1 pkt 37 ustawy o VAT - usługi finansowe",
+    note: "Art. 43 ust. 1 pkt 37 ustawy o VAT - usługi finansowe i pośrednictwa finansowego.",
+  },
+  {
+    value: "art_113",
+    label: "Art. 113 ust. 1 i 9 ustawy o VAT - zwolnienie podmiotowe",
+    note: "Art. 113 ust. 1 i 9 ustawy o VAT - zwolnienie podmiotowe do 200 000 PLN obrotu.",
+  },
+  {
+    value: "par_3_ust_1_pkt_1",
+    label: "Par. 3 ust. 1 pkt 1 rozporządzenia MF z 20.12.2013 r.",
+    note: "Par. 3 ust. 1 pkt 1 rozporządzenia MF z 20.12.2013 r. - dostawa towarów używanych.",
+  },
+  {
+    value: "custom",
+    label: "Inne (wpisz własny opis)",
+    note: "",
+  },
+];
+
+const EXEMPTION_REASON_LOOKUP = new Map(EXEMPTION_REASONS.map((reason) => [reason.value, reason]));
+
+const authSection = document.getElementById("auth-section");
+const appSection = document.getElementById("app-section");
+
+const registerForm = document.getElementById("register-form");
+const loginForm = document.getElementById("login-form");
+const loginSubmitButton = loginForm ? loginForm.querySelector('button[type="submit"]') : null;
+const loginSubmitButtonDefaultText = loginSubmitButton && loginSubmitButton.textContent ? loginSubmitButton.textContent.trim() || "Zaloguj" : "Zaloguj";
+const invoiceForm = document.getElementById("invoice-form");
+const businessForm = document.getElementById("business-form");
+
+const registerFeedback = document.getElementById("register-feedback");
+const loginFeedback = document.getElementById("login-feedback");
+const businessFeedback = document.getElementById("business-feedback");
+const logoFeedback = document.getElementById("logo-feedback");
+const registerSection = document.getElementById("register-section");
+const showRegisterButton = document.getElementById("show-register-button");
+const backToLoginButton = document.getElementById("back-to-login");
+const cancelRegisterButton = document.getElementById("cancel-register");
+
+const businessDisplay = document.getElementById("business-display");
+const toggleBusinessFormButton = document.getElementById("toggle-business-form");
+const cancelBusinessUpdateButton = document.getElementById("cancel-business-update");
+const currentLoginLabel = document.getElementById("current-login-label");
+
+const itemsBody = document.getElementById("items-body");
+const addItemButton = document.getElementById("add-item-button");
+
+const totalNetLabel = document.getElementById("total-net");
+const totalVatLabel = document.getElementById("total-vat");
+const totalGrossLabel = document.getElementById("total-gross");
+const rateSummaryContainer = document.getElementById("rate-summary");
+
+const exemptionNoteWrapper = document.getElementById("exemption-note-wrapper");
+const exemptionReasonSelect = document.getElementById("exemption-reason");
+const exemptionNoteInput = document.getElementById("exemption-note");
+
+const invoiceResult = document.getElementById("invoice-result");
+const invoiceOutput = document.getElementById("invoice-output");
+const downloadButton = document.getElementById("download-button");
+const logoutButton = document.getElementById("logout-button");
+const cancelEditInvoiceButton = document.getElementById("cancel-edit-invoice");
+const saveInvoiceButton = document.getElementById("save-invoice-button");
+
+const invoiceBuilderSection = document.getElementById("invoice-builder-section");
+const dashboardSection = document.getElementById("dashboard-section");
+const appNavButtons = Array.from(document.querySelectorAll(".app-nav-button"));
+
+const invoicesTableBody = document.getElementById("invoices-table-body");
+const invoicesEmpty = document.getElementById("invoices-empty");
+const dashboardFeedback = document.getElementById("dashboard-feedback");
+
+const filterStartDate = document.getElementById("filter-start-date");
+const filterEndDate = document.getElementById("filter-end-date");
+const clearFiltersButton = document.getElementById("clear-filters");
+
+const summaryMonthCount = document.getElementById("summary-month-count");
+const summaryMonthAmount = document.getElementById("summary-month-amount");
+const summaryQuarterCount = document.getElementById("summary-quarter-count");
+const summaryQuarterAmount = document.getElementById("summary-quarter-amount");
+const summaryYearCount = document.getElementById("summary-year-count");
+const summaryYearAmount = document.getElementById("summary-year-amount");
+
+const logoInput = document.getElementById("logo-input");
+const logoPreview = document.getElementById("logo-preview");
+const logoPreviewImage = document.getElementById("logo-preview-image");
+const removeLogoButton = document.getElementById("remove-logo-button");
+const legacyLoginHint = document.getElementById("legacy-login-hint");
+const invoicesChartCanvas = document.getElementById("invoices-chart");
+
+let authToken = sessionStorage.getItem("invoiceAuthToken") || null;
+let currentLogin = sessionStorage.getItem("invoiceLogin") || "";
+let currentBusiness = null;
+let currentLogo = null;
+let lastInvoice = null;
+let invoicesCache = [];
+let editingInvoiceId = null;
+let activeView = "invoice-builder";
+let invoicesChart = null;
+let maxLogoSize = 512 * 1024;
+let pdfFontPromise = null;
+let pdfFontBase64 = null;
+let customExemptionNote = "";
+
+function setVisibility(element, visible) {
+  if (!element) {
+    return;
+  }
+  if (visible) {
+    element.classList.remove("hidden");
+    element.style.removeProperty("display");
+  } else {
+    element.classList.add("hidden");
+    element.style.display = "none";
+  }
+}
+
+function setAppState(state) {
+  if (state === "app") {
+    setVisibility(authSection, false);
+    setVisibility(registerSection, false);
+    setVisibility(appSection, true);
+  } else {
+    setVisibility(authSection, true);
+    setVisibility(registerSection, false);
+    setVisibility(appSection, false);
+  }
+}
+
+function openRegisterPanel() {
+  if (!registerSection) {
+    return;
+  }
+  setVisibility(authSection, false);
+  setVisibility(registerSection, true);
+  setVisibility(appSection, false);
+  clearFeedback(registerFeedback);
+  clearFeedback(loginFeedback);
+  if (registerForm) {
+    const emailInput = registerForm.elements.email;
+    if (emailInput) {
+      emailInput.focus();
+    }
+  }
+  const scrollTarget = registerSection.querySelector(".register-card") || registerSection;
+  const scrollIntoView = () => scrollTarget.scrollIntoView({ behavior: "smooth", block: "start" });
+  if (typeof window !== "undefined" && typeof window.requestAnimationFrame === "function") {
+    window.requestAnimationFrame(scrollIntoView);
+  } else if (typeof requestAnimationFrame === "function") {
+    requestAnimationFrame(scrollIntoView);
+  } else {
+    scrollIntoView();
+  }
+}
+
+function closeRegisterPanel({ resetForm = true, focusTrigger = false } = {}) {
+  if (!registerSection) {
+    return;
+  }
+  setVisibility(registerSection, false);
+  setVisibility(authSection, true);
+  setVisibility(appSection, false);
+  clearFeedback(registerFeedback);
+  clearFeedback(loginFeedback);
+  if (resetForm && registerForm) {
+    registerForm.reset();
+  }
+  if (focusTrigger) {
+    if (showRegisterButton) {
+      showRegisterButton.focus();
+    }
+    const scrollTarget = authSection ? authSection.querySelector(".login-card") || authSection : null;
+    if (scrollTarget) {
+      const scrollToLogin = () => scrollTarget.scrollIntoView({ behavior: "smooth", block: "start" });
+      if (typeof window !== "undefined" && typeof window.requestAnimationFrame === "function") {
+        window.requestAnimationFrame(scrollToLogin);
+      } else if (typeof requestAnimationFrame === "function") {
+        requestAnimationFrame(scrollToLogin);
+      } else {
+        scrollToLogin();
+      }
+    }
+  }
+}
+
+function clearFeedback(element) {
+  if (!element) {
+    return;
+  }
+  element.textContent = "";
+  element.classList.remove("error", "success");
+}
+
+function showFeedback(element, message, type = "error") {
+  if (!element) {
+    return;
+  }
+  element.textContent = message;
+  element.classList.remove("error", "success");
+  if (type) {
+    element.classList.add(type);
+  }
+}
+
+function parseNumber(value) {
+  if (typeof value === "number") {
+    return Number.isFinite(value) ? value : 0;
+  }
+  if (!value) {
+    return 0;
+  }
+  const normalized = value.toString().replace(",", ".");
+  const parsed = Number.parseFloat(normalized);
+  return Number.isFinite(parsed) ? parsed : 0;
+}
+
+function parseIntegerString(value) {
+  if (value === null || value === undefined) {
+    return Number.NaN;
+  }
+  const normalized = value.toString().trim();
+  if (!normalized) {
+    return 0;
+  }
+  if (!/^\d+$/.test(normalized)) {
+    return Number.NaN;
+  }
+  const parsed = Number.parseInt(normalized, 10);
+  return Number.isNaN(parsed) ? Number.NaN : parsed;
+}
+
+function formatQuantity(value) {
+  const parsed = parseIntegerString(value);
+  if (Number.isNaN(parsed)) {
+    return "0";
+  }
+  return parsed.toString();
+}
+
+function formatCurrency(value) {
+  const number = parseNumber(value);
+  return `${number.toFixed(2)} PLN`;
+}
+
+function vatLabelFromCode(code) {
+  if (code === "ZW" || code === "0") {
+    return "ZW";
+  }
+  if (code === "NP") {
+    return "NP";
+  }
+  return `${code}%`;
+}
+
+function requiresExemption(code) {
+  return code === "ZW" || code === "0";
+}
+
+function populateExemptionReasons() {
+  if (!exemptionReasonSelect || exemptionReasonSelect.dataset.initialized === "true") {
+    return;
+  }
+  const existingValues = new Set(Array.from(exemptionReasonSelect.options).map((option) => option.value));
+  EXEMPTION_REASONS.forEach((reason) => {
+    if (existingValues.has(reason.value)) {
+      return;
+    }
+    const option = document.createElement("option");
+    option.value = reason.value;
+    option.textContent = reason.label;
+    exemptionReasonSelect.appendChild(option);
+  });
+  exemptionReasonSelect.dataset.initialized = "true";
+}
+
+function applyExemptionReasonSelection({ preserveCustom = false } = {}) {
+  if (!exemptionReasonSelect || !exemptionNoteInput) {
+    return;
+  }
+  const selectedValue = exemptionReasonSelect.value;
+  const selectedReason = EXEMPTION_REASON_LOOKUP.get(selectedValue);
+  
+  // Ukryj pole "Podstawa prawna zwolnienia" jeśli nie wybrano opcji "Inne..."
+  const exemptionNoteLabel = document.getElementById("exemption-note-label");
+  if (exemptionNoteLabel) {
+    if (selectedValue === "custom") {
+      exemptionNoteLabel.style.display = "block";
+      exemptionNoteInput.style.display = "block";
+    } else {
+      exemptionNoteLabel.style.display = "none";
+      exemptionNoteInput.style.display = "none";
+    }
+  }
+  
+  if (!selectedReason) {
+    if (!preserveCustom) {
+      exemptionNoteInput.readOnly = false;
+      exemptionNoteInput.value = "";
+    }
+    return;
+  }
+  if (selectedValue === "custom") {
+    exemptionNoteInput.readOnly = false;
+    if (!preserveCustom) {
+      exemptionNoteInput.value = customExemptionNote;
+    }
+    return;
+  }
+  exemptionNoteInput.readOnly = true;
+  exemptionNoteInput.value = selectedReason.note;
+}
+
+function findExemptionReasonByNote(note) {
+  if (!note) {
+    return null;
+  }
+  const normalized = note.trim().toLowerCase();
+  return (
+    EXEMPTION_REASONS.find(
+      (reason) =>
+        reason.value !== "custom" && reason.note && reason.note.trim().toLowerCase() === normalized
+    ) || null
+  );
+}
+
+function syncExemptionControlsWithNote(note) {
+  if (!exemptionNoteInput) {
+    return;
+  }
+  const trimmed = (note || "").trim();
+  exemptionNoteInput.readOnly = false;
+  if (!exemptionReasonSelect) {
+    exemptionNoteInput.value = trimmed;
+    return;
+  }
+  if (!trimmed) {
+    customExemptionNote = "";
+    exemptionReasonSelect.value = "";
+    exemptionNoteInput.value = "";
+    return;
+  }
+  const matchedReason = findExemptionReasonByNote(trimmed);
+  if (matchedReason && matchedReason.value !== "custom") {
+    exemptionReasonSelect.value = matchedReason.value;
+    applyExemptionReasonSelection({ preserveCustom: true });
+  } else {
+    customExemptionNote = trimmed;
+    exemptionReasonSelect.value = "custom";
+    exemptionNoteInput.readOnly = false;
+    exemptionNoteInput.value = trimmed;
+  }
+}
+
+function updateExemptionVisibility(exemptionNeeded) {
+  if (!exemptionNoteWrapper || !exemptionNoteInput) {
+    return;
+  }
+  if (exemptionNeeded) {
+    populateExemptionReasons();
+    setVisibility(exemptionNoteWrapper, true);
+    applyExemptionReasonSelection({ preserveCustom: true });
+    return;
+  }
+  setVisibility(exemptionNoteWrapper, false);
+  if (exemptionReasonSelect) {
+    exemptionReasonSelect.value = "";
+  }
+  customExemptionNote = "";
+  exemptionNoteInput.readOnly = false;
+  exemptionNoteInput.value = "";
+}
+
+function formatInvoicesCount(count) {
+  const value = Number.parseInt(count, 10) || 0;
+  const absolute = Math.abs(value);
+  const mod10 = absolute % 10;
+  const mod100 = absolute % 100;
+  let suffix = "faktur";
+  if (mod10 === 1 && mod100 !== 11) {
+    suffix = "faktura";
+  } else if ([2, 3, 4].includes(mod10) && ![12, 13, 14].includes(mod100)) {
+    suffix = "faktury";
+  }
+  return `${value} ${suffix}`;
+}
+
+function parseInvoiceIssuedAt(invoice) {
+  if (!invoice || !invoice.issued_at) {
+    return null;
+  }
+  const normalized = invoice.issued_at.replace(" ", "T");
+  const parsed = new Date(normalized);
+  return Number.isNaN(parsed.getTime()) ? null : parsed;
+}
+
+function parseDateInput(value) {
+  if (!value) {
+    return null;
+  }
+  const parts = value.split("-").map((part) => Number.parseInt(part, 10));
+  if (parts.length !== 3 || parts.some(Number.isNaN)) {
+    return null;
+  }
+  return new Date(parts[0], parts[1] - 1, parts[2]);
+}
+
+function setActiveView(view) {
+  activeView = view === "dashboard" ? "dashboard" : "invoice-builder";
+  setVisibility(invoiceBuilderSection, activeView === "invoice-builder");
+  setVisibility(dashboardSection, activeView === "dashboard");
+  const showDashboard = activeView === "dashboard";
+  appNavButtons.forEach((button) => {
+    button.classList.toggle("active", button.dataset.view === activeView);
+  });
+  if (showDashboard) {
+    applyInvoiceFilters();
+  }
+}
+
+function updateLoginLabel() {
+  if (!currentLogin) {
+    currentLoginLabel.textContent = "";
+    return;
+  }
+  currentLoginLabel.textContent = `Zalogowany jako ${currentLogin}`;
+}
+
+function updateLogoPreview() {
+  if (currentLogo && currentLogo.data && currentLogo.mime_type) {
+    const dataUrl = currentLogo.data_url || `data:${currentLogo.mime_type};base64,${currentLogo.data}`;
+    logoPreviewImage.src = dataUrl;
+    logoPreview.classList.remove("hidden");
+    removeLogoButton.classList.remove("hidden");
+  } else {
+    logoPreviewImage.removeAttribute("src");
+    logoPreview.classList.add("hidden");
+    removeLogoButton.classList.add("hidden");
+  }
+}
+
+function renderInvoicesTable(invoices) {
+  invoicesTableBody.innerHTML = "";
+  if (!Array.isArray(invoices) || invoices.length === 0) {
+    invoicesEmpty.classList.remove("hidden");
+    return;
+  }
+
+  invoicesEmpty.classList.add("hidden");
+  invoices.forEach((invoice) => {
+    const row = document.createElement("tr");
+
+    const numberCell = document.createElement("td");
+    numberCell.textContent = invoice.invoice_id || "---";
+    row.appendChild(numberCell);
+
+    const issuedCell = document.createElement("td");
+    issuedCell.textContent = invoice.issued_at || "-";
+    row.appendChild(issuedCell);
+
+    const clientCell = document.createElement("td");
+    const clientName = invoice.client?.name || "";
+    const clientCity = invoice.client?.city || "";
+    clientCell.textContent = clientName ? `${clientName}${clientCity ? ` (${clientCity})` : ""}` : "-";
+    row.appendChild(clientCell);
+
+    const grossCell = document.createElement("td");
+    grossCell.textContent = formatCurrency(invoice.totals?.gross ?? 0);
+    row.appendChild(grossCell);
+
+    const actionsCell = document.createElement("td");
+    const actionsWrapper = document.createElement("div");
+    actionsWrapper.className = "table-actions";
+
+    const editButton = document.createElement("button");
+    editButton.type = "button";
+    editButton.textContent = "Edytuj";
+    editButton.addEventListener("click", () => {
+      startInvoiceEdit(invoice.invoice_id);
+    });
+
+    const deleteButton = document.createElement("button");
+    deleteButton.type = "button";
+    deleteButton.className = "button secondary";
+    deleteButton.textContent = "Usuń";
+    deleteButton.addEventListener("click", async () => {
+      clearFeedback(dashboardFeedback);
+      const shouldDelete = window.confirm(`Usuńac fakturę ${invoice.invoice_id}?`);
+      if (!shouldDelete) {
+        return;
+      }
+      await deleteInvoice(invoice.invoice_id);
+    });
+
+    actionsWrapper.appendChild(editButton);
+    actionsWrapper.appendChild(deleteButton);
+    actionsCell.appendChild(actionsWrapper);
+    row.appendChild(actionsCell);
+
+    invoicesTableBody.appendChild(row);
+  });
+}
+
+function applyInvoiceFilters() {
+  if (!Array.isArray(invoicesCache)) {
+    renderInvoicesTable([]);
+    return;
+  }
+
+  let filtered = invoicesCache.slice();
+  const startDate = parseDateInput(filterStartDate?.value);
+  const endDate = parseDateInput(filterEndDate?.value);
+
+  if (startDate) {
+    const startTime = startDate.getTime();
+    filtered = filtered.filter((invoice) => {
+      const issued = parseInvoiceIssuedAt(invoice);
+      return !issued || issued.getTime() >= startTime;
+    });
+  }
+
+  if (endDate) {
+    const endBoundary = new Date(endDate);
+    endBoundary.setHours(23, 59, 59, 999);
+    const endTime = endBoundary.getTime();
+    filtered = filtered.filter((invoice) => {
+      const issued = parseInvoiceIssuedAt(invoice);
+      return !issued || issued.getTime() <= endTime;
+    });
+  }
+
+  filtered.sort((a, b) => (b.issued_at || "").localeCompare(a.issued_at || ""));
+  renderInvoicesTable(filtered);
+}
+
+async function refreshInvoices() {
+  if (!authToken) {
+    invoicesCache = [];
+    renderInvoicesTable([]);
+    return;
+  }
+  clearFeedback(dashboardFeedback);
+  try {
+    const data = await apiRequest("/api/invoices", {}, true);
+    invoicesCache = Array.isArray(data.invoices) ? data.invoices.slice() : [];
+    invoicesCache.sort((a, b) => (b.issued_at || "").localeCompare(a.issued_at || ""));
+    applyInvoiceFilters();
+  } catch (error) {
+    console.error(error);
+    showFeedback(dashboardFeedback, error.message || "Nie udało się pobrać faktur.");
+  }
+}
+
+function updateSummaryCards(summary) {
+  const monthSummary = summary?.last_month || { count: 0, gross_total: 0 };
+  const quarterSummary = summary?.quarter || { count: 0, gross_total: 0 };
+  const yearSummary = summary?.year || { count: 0, gross_total: 0 };
+
+  summaryMonthCount.textContent = formatInvoicesCount(monthSummary.count);
+  summaryQuarterCount.textContent = formatInvoicesCount(quarterSummary.count);
+  summaryYearCount.textContent = formatInvoicesCount(yearSummary.count);
+
+  summaryMonthAmount.textContent = formatCurrency(monthSummary.gross_total ?? 0);
+  summaryQuarterAmount.textContent = formatCurrency(quarterSummary.gross_total ?? 0);
+  summaryYearAmount.textContent = formatCurrency(yearSummary.gross_total ?? 0);
+}
+
+function updateSummaryChart(summary) {
+  if (!invoicesChartCanvas || typeof window.Chart === "undefined") {
+    return;
+  }
+
+  const labels = ["Ostatnie 30 dni", "Bieżący kwartał", "Bieżący rok"];
+  const counts = [
+    Number.parseInt(summary?.last_month?.count ?? 0, 10) || 0,
+    Number.parseInt(summary?.quarter?.count ?? 0, 10) || 0,
+    Number.parseInt(summary?.year?.count ?? 0, 10) || 0,
+  ];
+  const amounts = [
+    parseNumber(summary?.last_month?.gross_total ?? 0),
+    parseNumber(summary?.quarter?.gross_total ?? 0),
+    parseNumber(summary?.year?.gross_total ?? 0),
+  ];
+
+  const chartData = {
+    labels,
+    datasets: [
+      {
+        label: "Liczba faktur",
+        data: counts,
+        backgroundColor: "rgba(26, 115, 232, 0.65)",
+        yAxisID: "count",
+        borderRadius: 6,
+      },
+      {
+        label: "Suma brutto (PLN)",
+        data: amounts,
+        type: "line",
+        fill: false,
+        borderColor: "rgba(26, 115, 232, 0.65)",
+        backgroundColor: "rgba(26, 115, 232, 0.35)",
+        tension: 0.3,
+        yAxisID: "amount",
+      },
+    ],
+  };
+
+  const options = {
+    responsive: true,
+    maintainAspectRatio: false,
+    scales: {
+      count: {
+        beginAtZero: true,
+        position: "left",
+        ticks: {
+          precision: 0,
+          stepSize: 1,
+        },
+      },
+      amount: {
+        beginAtZero: true,
+        position: "right",
+        grid: {
+          drawOnChartArea: false,
+        },
+        ticks: {
+          callback: (value) => `${new Intl.NumberFormat("pl-PL", { minimumFractionDigits: 2, maximumFractionDigits: 2 }).format(value)} PLN`,
+        },
+      },
+    },
+    plugins: {
+      legend: {
+        position: "bottom",
+      },
+      tooltip: {
+        callbacks: {
+          label(context) {
+            if (context.dataset.yAxisID === "amount") {
+              return `${context.dataset.label}: ${new Intl.NumberFormat("pl-PL", { minimumFractionDigits: 2, maximumFractionDigits: 2 }).format(context.parsed.y)} PLN`;
+            }
+            return `${context.dataset.label}: ${context.parsed.y}`;
+          },
+        },
+      },
+    },
+  };
+
+  if (!invoicesChart) {
+    invoicesChart = new window.Chart(invoicesChartCanvas, {
+      type: "bar",
+      data: chartData,
+      options,
+    });
+  } else {
+    invoicesChart.data = chartData;
+    invoicesChart.options = options;
+    invoicesChart.update();
+  }
+}
+
+async function refreshSummary() {
+  if (!authToken) {
+    updateSummaryCards({});
+    updateSummaryChart({});
+    return;
+  }
+  clearFeedback(dashboardFeedback);
+  try {
+    const data = await apiRequest("/api/invoices/summary", {}, true);
+    updateSummaryCards(data.summary);
+    updateSummaryChart(data.summary);
+  } catch (error) {
+    console.error(error);
+    showFeedback(dashboardFeedback, error.message || "Nie udało się pobrać podsumowania.");
+  }
+}
+
+async function deleteInvoice(invoiceId) {
+  if (!invoiceId) {
+    return;
+  }
+  try {
+    await apiRequest(`/api/invoices/${encodeURIComponent(invoiceId)}`, { method: "DELETE" }, true);
+    invoicesCache = invoicesCache.filter((invoice) => invoice.invoice_id !== invoiceId);
+    applyInvoiceFilters();
+    await refreshSummary();
+  } catch (error) {
+    console.error(error);
+    showFeedback(dashboardFeedback, error.message || "Nie udało się usunąć faktury.");
+  }
+}
+
+function startInvoiceEdit(invoiceId) {
+  if (!invoiceId) {
+    return;
+  }
+  const invoice = invoicesCache.find((item) => item.invoice_id === invoiceId);
+  if (!invoice) {
+    showFeedback(dashboardFeedback, "Nie znaleziono wybranej faktury.");
+    return;
+  }
+
+  editingInvoiceId = invoiceId;
+  saveInvoiceButton.textContent = "Zapisz zmiany";
+  cancelEditInvoiceButton.classList.remove("hidden");
+  setActiveView("invoice-builder");
+
+  resetInvoiceForm();
+  invoiceForm.elements.saleDate.value = invoice.sale_date || "";
+  invoiceForm.elements.paymentTerm.value = invoice.payment_term || 14;
+
+  if (invoice.client) {
+    invoiceForm.elements.clientName.value = invoice.client.name || "";
+    invoiceForm.elements.clientTaxId.value = invoice.client.tax_id || "";
+    invoiceForm.elements.clientAddress.value = invoice.client.address_line || "";
+    invoiceForm.elements.clientPostalCode.value = invoice.client.postal_code || "";
+    invoiceForm.elements.clientCity.value = invoice.client.city || "";
+    invoiceForm.elements.clientPhone.value = invoice.client.phone || "";
+  }
+
+  itemsBody.innerHTML = "";
+  if (Array.isArray(invoice.items) && invoice.items.length > 0) {
+    invoice.items.forEach((item) => {
+      createItemRow({
+        name: item.name,
+        quantity: item.quantity,
+        unit_price_gross: item.unit_price_gross ?? item.gross_total,
+        vat_code: item.vat_code,
+        unit: item.unit,
+      });
+    });
+  } else {
+    createItemRow();
+  }
+
+  const note = invoice.exemption_note || "";
+  syncExemptionControlsWithNote(note);
+  const requiresNote = Array.isArray(invoice.items)
+    ? invoice.items.some((item) => requiresExemption(item.vat_code))
+    : false;
+  updateExemptionVisibility(requiresNote);
+
+  lastInvoice = invoice;
+}
+
+function exitInvoiceEdit() {
+  editingInvoiceId = null;
+  saveInvoiceButton.textContent = "Generuj fakturę";
+  cancelEditInvoiceButton.classList.add("hidden");
+}
+
+async function apiRequest(path, { method = "GET", body, headers = {} } = {}, requireAuth = false) {
+  const options = {
+    method,
+    headers: {
+      "Content-Type": "application/json",
+      ...headers,
+    },
+  };
+
+  if (body !== undefined) {
+    options.body = JSON.stringify(body);
+  }
+
+  if (requireAuth) {
+    if (!authToken) {
+      throw new Error("Brak tokenu autoryzacyjnego.");
+    }
+    options.headers.Authorization = `Bearer ${authToken}`;
+  }
+
+  const response = await fetch(path, options);
+  const isJson = response.headers.get("content-type")?.includes("application/json");
+  const data = isJson ? await response.json() : {};
+
+  if (response.status === 401) {
+    authToken = null;
+    currentLogin = "";
+    sessionStorage.removeItem("invoiceAuthToken");
+    sessionStorage.removeItem("invoiceLogin");
+    setAppState("auth");
+    throw new Error(data.error || "Sesja wygasła. Zaloguj się ponownie.");
+  }
+
+  if (!response.ok) {
+    throw new Error(data.error || "Wystapil błąd podczas komunikacji z serwerem.");
+  }
+
+  return data;
+}
+
+function renderBusinessDisplay(business) {
+  if (!business) {
+    businessDisplay.textContent = "Brak zapisanych danych firmy.";
+    return;
+  }
+
+  const fallback = (value) => {
+    if (!value) {
+      return "---";
+    }
+    const trimmed = value.toString().trim();
+    return trimmed || "---";
+  };
+
+  const companyName = fallback(business.company_name);
+  const ownerName = fallback(business.owner_name);
+  const addressLine = fallback(business.address_line);
+  const location = fallback([business.postal_code, business.city].filter(Boolean).join(" "));
+  const taxLine = `NIP: ${fallback(business.tax_id)}`;
+  const bankLine = `Konto: ${fallback(business.bank_account)}`;
+
+  businessDisplay.innerHTML = `
+    <div class="business-display-grid">
+      <div class="business-display-item business-display-item--name">
+        <strong>${companyName}</strong>
+        <span>${ownerName}</span>
+      </div>
+      <div class="business-display-item">
+        <span>${addressLine}</span>
+        <span>${location}</span>
+      </div>
+      <div class="business-display-item">
+        <span>${taxLine}</span>
+        <span>${bankLine}</span>
+      </div>
+    </div>
+  `;
+}
+
+function fillBusinessForm(business) {
+  if (!business) {
+    return;
+  }
+  businessForm.elements.company_name.value = business.company_name || "";
+  businessForm.elements.owner_name.value = business.owner_name || "";
+  businessForm.elements.address_line.value = business.address_line || "";
+  businessForm.elements.postal_code.value = business.postal_code || "";
+  businessForm.elements.city.value = business.city || "";
+  businessForm.elements.tax_id.value = business.tax_id || "";
+  businessForm.elements.bank_account.value = business.bank_account || "";
+}
+
+function setBusinessFormVisibility(visible, { preserveFeedback = false } = {}) {
+  setVisibility(businessForm, visible);
+  if (toggleBusinessFormButton) {
+    toggleBusinessFormButton.textContent = visible ? "Ukryj formularz" : "Edycja danych";
+  }
+  if (!visible && !preserveFeedback) {
+    clearFeedback(businessFeedback);
+  }
+}
+
+function vatSelectElement(initialValue = "23") {
+  const select = document.createElement("select");
+  select.className = "item-vat";
+  VAT_OPTIONS.forEach((option) => {
+    const element = document.createElement("option");
+    element.value = option.value;
+    element.textContent = option.label;
+    select.appendChild(element);
+  });
+  select.value = VAT_OPTIONS.some((option) => option.value === initialValue) ? initialValue : "23";
+  return select;
+}
+
+function unitSelectElement(initialValue = DEFAULT_UNIT) {
+  const select = document.createElement("select");
+  select.className = "item-unit";
+  UNIT_OPTIONS.forEach((option) => {
+    const element = document.createElement("option");
+    element.value = option.value;
+    element.textContent = option.label;
+    select.appendChild(element);
+  });
+  select.value = UNIT_OPTIONS.some((option) => option.value === initialValue) ? initialValue : DEFAULT_UNIT;
+  return select;
+}
+
+function createItemRow(initialValues = {}) {
+  const row = document.createElement("tr");
+
+  const nameCell = document.createElement("td");
+  const nameInput = document.createElement("input");
+  nameInput.type = "text";
+  nameInput.className = "item-name";
+  nameInput.placeholder = "Nazwa towaru lub usługi";
+  if (initialValues.name) {
+    nameInput.value = initialValues.name;
+  }
+  nameCell.appendChild(nameInput);
+
+  const quantityCell = document.createElement("td");
+  const quantityInput = document.createElement("input");
+  quantityInput.type = "number";
+  quantityInput.className = "item-quantity";
+  quantityInput.min = "1";
+  quantityInput.step = "1";
+  quantityInput.inputMode = "numeric";
+  const parsedQuantity = parseIntegerString(initialValues.quantity);
+  const safeQuantity = Number.isNaN(parsedQuantity) || parsedQuantity <= 0 ? 1 : parsedQuantity;
+  quantityInput.value = String(safeQuantity);
+  quantityCell.appendChild(quantityInput);
+
+  const unitCell = document.createElement("td");
+  const unitSelect = unitSelectElement(initialValues.unit);
+  unitCell.appendChild(unitSelect);
+
+  const unitGrossCell = document.createElement("td");
+  const unitGrossInput = document.createElement("input");
+  unitGrossInput.type = "number";
+  unitGrossInput.className = "item-gross";
+  unitGrossInput.min = "0.01";
+  unitGrossInput.step = "0.01";
+  unitGrossInput.placeholder = "Brutto";
+  if (initialValues.unit_price_gross) {
+    unitGrossInput.value = initialValues.unit_price_gross;
+  }
+  unitGrossCell.appendChild(unitGrossInput);
+
+  const vatCell = document.createElement("td");
+  const vatSelect = vatSelectElement(initialValues.vat_code);
+  vatCell.appendChild(vatSelect);
+
+  const totalCell = document.createElement("td");
+  totalCell.className = "item-total";
+  totalCell.textContent = "0.00 PLN";
+
+  const actionsCell = document.createElement("td");
+  const removeButton = document.createElement("button");
+  removeButton.type = "button";
+  removeButton.className = "remove-item";
+  removeButton.textContent = "Usuń";
+  actionsCell.appendChild(removeButton);
+
+  row.appendChild(nameCell);
+  row.appendChild(quantityCell);
+  row.appendChild(unitCell);
+  row.appendChild(unitGrossCell);
+  row.appendChild(vatCell);
+  row.appendChild(totalCell);
+  row.appendChild(actionsCell);
+
+  const handleChange = () => updateTotals();
+  nameInput.addEventListener("input", handleChange);
+  quantityInput.addEventListener("input", () => {
+    const sanitized = quantityInput.value.replace(/[^0-9]/g, "");
+    quantityInput.value = sanitized;
+    handleChange();
+  });
+  quantityInput.addEventListener("blur", () => {
+    const parsed = parseIntegerString(quantityInput.value);
+    quantityInput.value = Number.isNaN(parsed) || parsed <= 0 ? "1" : String(parsed);
+    handleChange();
+  });
+  unitGrossInput.addEventListener("input", handleChange);
+  vatSelect.addEventListener("change", handleChange);
+  unitSelect.addEventListener("change", handleChange);
+
+  removeButton.addEventListener("click", () => {
+    if (itemsBody.children.length === 1) {
+      nameInput.value = "";
+      quantityInput.value = "1";
+      unitGrossInput.value = "";
+      vatSelect.value = "23";
+      unitSelect.value = DEFAULT_UNIT;
+      updateTotals();
+      return;
+    }
+    row.remove();
+    updateTotals();
+  });
+
+  itemsBody.appendChild(row);
+  updateTotals();
+}
+
+function calculateRowTotals(row) {
+  const name = row.querySelector(".item-name")?.value.trim() ?? "";
+  const quantityRaw = row.querySelector(".item-quantity")?.value;
+  const quantityParsed = parseIntegerString(quantityRaw);
+  const quantityValid = Number.isInteger(quantityParsed) && quantityParsed > 0;
+  const quantity = quantityValid ? quantityParsed : 0;
+  const unitGross = parseNumber(row.querySelector(".item-gross")?.value);
+  const vatCode = row.querySelector(".item-vat")?.value ?? "23";
+  const rate = VAT_RATE_VALUES[vatCode] ?? 0;
+  const unit = row.querySelector(".item-unit")?.value || DEFAULT_UNIT;
+  const unitLabel = UNIT_OPTIONS.some((option) => option.value === unit) ? unit : DEFAULT_UNIT;
+
+  const hasValues = name || quantity > 0 || unitGross > 0;
+  if (!hasValues) {
+    return {
+      valid: false,
+      vatCode,
+      vatLabel: vatLabelFromCode(vatCode),
+      requiresExemption: requiresExemption(vatCode),
+      quantity,
+      unitGross,
+      unitNet: 0,
+      netTotal: 0,
+      vatAmount: 0,
+      grossTotal: 0,
+      unit: unitLabel,
+    };
+  }
+
+  if (!quantityValid || unitGross <= 0) {
+    return {
+      valid: false,
+      vatCode,
+      vatLabel: vatLabelFromCode(vatCode),
+      requiresExemption: requiresExemption(vatCode),
+      quantity,
+      unitGross,
+      unitNet: 0,
+      netTotal: 0,
+      vatAmount: 0,
+      grossTotal: quantity * unitGross,
+      unit: unitLabel,
+    };
+  }
+
+  const grossTotal = quantity * unitGross;
+  const netTotal = rate > 0 ? grossTotal / (1 + rate) : grossTotal;
+  const vatAmount = grossTotal - netTotal;
+  const unitNet = netTotal / quantity;
+
+  return {
+    valid: true,
+    vatCode,
+    vatLabel: vatLabelFromCode(vatCode),
+    requiresExemption: requiresExemption(vatCode),
+    quantity,
+    unitGross,
+    unitNet,
+    netTotal,
+    vatAmount,
+    grossTotal,
+    unit: unitLabel,
+  };
+}
+
+function updateTotals() {
+  let totalNet = 0;
+  let totalVat = 0;
+  let totalGross = 0;
+  const summary = new Map();
+  let exemptionNeeded = false;
+
+  const rows = Array.from(itemsBody.querySelectorAll("tr"));
+  rows.forEach((row) => {
+    const totals = calculateRowTotals(row);
+    if (totals.requiresExemption) {
+      exemptionNeeded = true;
+    }
+    const totalCell = row.querySelector(".item-total");
+    totalCell.textContent = formatCurrency(totals.grossTotal);
+
+    if (!totals.valid) {
+      return;
+    }
+
+    totalNet += totals.netTotal;
+    totalVat += totals.vatAmount;
+    totalGross += totals.grossTotal;
+
+    const existing = summary.get(totals.vatLabel) || { net: 0, vat: 0, gross: 0 };
+    existing.net += totals.netTotal;
+    existing.vat += totals.vatAmount;
+    existing.gross += totals.grossTotal;
+    summary.set(totals.vatLabel, existing);
+  });
+
+  totalNetLabel.textContent = `Suma netto: ${totalNet.toFixed(2)} PLN`;
+  totalVatLabel.textContent = `Kwota VAT: ${totalVat.toFixed(2)} PLN`;
+  totalGrossLabel.textContent = `Suma brutto: ${totalGross.toFixed(2)} PLN`;
+  renderRateSummary(summary);
+
+  updateExemptionVisibility(exemptionNeeded);
+}
+
+function renderRateSummary(summary) {
+  if (!summary || summary.size === 0) {
+    rateSummaryContainer.innerHTML = "";
+    return;
+  }
+
+  const entries = Array.from(summary.entries()).sort(([a], [b]) => a.localeCompare(b));
+  const markup = entries
+    .map(
+      ([label, totals]) =>
+        `<div class="rate-summary-item">
+          <span>${label}</span>
+          <span>Netto: ${totals.net.toFixed(2)} PLN</span>
+          <span>VAT: ${totals.vat.toFixed(2)} PLN</span>
+          <span>Brutto: ${totals.gross.toFixed(2)} PLN</span>
+        </div>`
+    )
+    .join("");
+  rateSummaryContainer.innerHTML = `<h4>Podsumowanie stawek</h4>${markup}`;
+}
+
+function collectInvoicePayload() {
+  const items = [];
+  const rows = Array.from(itemsBody.querySelectorAll("tr"));
+
+  rows.forEach((row) => {
+    const name = row.querySelector(".item-name")?.value.trim() ?? "";
+    const quantityRaw = row.querySelector(".item-quantity")?.value;
+    const quantityParsed = parseIntegerString(quantityRaw);
+    const quantityValid = Number.isInteger(quantityParsed) && quantityParsed > 0;
+    const quantity = quantityValid ? quantityParsed : 0;
+    const unitGross = parseNumber(row.querySelector(".item-gross")?.value);
+    const vatCode = row.querySelector(".item-vat")?.value ?? "23";
+    const unitValue = row.querySelector(".item-unit")?.value || DEFAULT_UNIT;
+    const unit = UNIT_OPTIONS.some((option) => option.value === unitValue) ? unitValue : DEFAULT_UNIT;
+
+    const hasValues = name || quantity > 0 || unitGross > 0;
+    if (!hasValues) {
+      return;
+    }
+
+    if (!name) {
+      throw new Error("Każda pozycja musi mieć nazwę.");
+    }
+    if (!quantityValid) {
+      throw new Error("Ilość musi byc dodatnia liczba calkowita.");
+    }
+    if (unitGross <= 0) {
+      throw new Error("Cena brutto musi być większa od zera.");
+    }
+
+    items.push({
+      name,
+      quantity,
+      unit,
+      unit_price_gross: unitGross.toFixed(2),
+      vat_code: vatCode,
+    });
+  });
+
+  if (items.length === 0) {
+    throw new Error("Dodaj przynajmniej jedną pozycję.");
+  }
+
+  const saleDate = invoiceForm.elements.saleDate.value || null;
+  const paymentTerm = parseInt(invoiceForm.elements.paymentTerm.value) || 14;
+  const requiresExemptionNote = items.some((item) => item.vat_code === "ZW" || item.vat_code === "0");
+  let exemptionNote = "";
+  if (requiresExemptionNote) {
+    const noteFromTextarea = exemptionNoteInput.value.trim();
+    if (exemptionReasonSelect) {
+      const selectedReason = EXEMPTION_REASON_LOOKUP.get(exemptionReasonSelect.value);
+      if (selectedReason && selectedReason.value !== "custom") {
+        exemptionNote = selectedReason.note;
+      } else {
+        exemptionNote = noteFromTextarea;
+      }
+    } else {
+      exemptionNote = noteFromTextarea;
+    }
+    if (!exemptionNote) {
+      throw new Error("Wybierz lub wpisz podstawę zwolnienia dla pozycji ze stawka ZW/0%.");
+    }
+  }
+  const client = {
+    name: (invoiceForm.elements.clientName.value || "").trim(),
+    tax_id: (invoiceForm.elements.clientTaxId.value || "").trim(),
+    address_line: (invoiceForm.elements.clientAddress.value || "").trim(),
+    postal_code: (invoiceForm.elements.clientPostalCode.value || "").trim(),
+    city: (invoiceForm.elements.clientCity.value || "").trim(),
+    phone: (invoiceForm.elements.clientPhone.value || "").trim(),
+  };
+
+  return {
+    sale_date: saleDate,
+    payment_term: paymentTerm,
+    client,
+    items,
+    exemption_note: exemptionNote,
+  };
+}
+
+function renderInvoicePreview(invoice) {
+  if (!invoice || !currentBusiness) {
+    invoiceOutput.innerHTML = "<p>Brak danych faktury.</p>";
+    return;
+  }
+
+  const client = invoice.client || {};
+  const hasClientData = client.name || client.address_line || client.postal_code || client.city || client.tax_id;
+
+  const itemsRows = (invoice.items || [])
+    .map((item) => {
+      const quantityDisplay = formatQuantity(item.quantity);
+      const unitDisplay = UNIT_OPTIONS.some((option) => option.value === item.unit) ? item.unit : DEFAULT_UNIT;
+      return `
+        <tr>
+          <td>${item.name}</td>
+          <td>${quantityDisplay}</td>
+          <td>${unitDisplay}</td>
+          <td>${formatCurrency(item.unit_price_net)}</td>
+          <td>${formatCurrency(item.net_total)}</td>
+          <td>${item.vat_label}</td>
+          <td>${formatCurrency(item.vat_amount)}</td>
+          <td>${formatCurrency(item.gross_total)}</td>
+        </tr>`;
+    })
+    .join("");
+
+  const summaryRows = (invoice.summary || [])
+    .map(
+      (entry) =>
+        `<div class="rate-summary-item">
+          <span>${entry.vat_label}</span>
+          <span>Netto: ${formatCurrency(entry.net_total)}</span>
+          <span>VAT: ${formatCurrency(entry.vat_total)}</span>
+          <span>Brutto: ${formatCurrency(entry.gross_total)}</span>
+        </div>`
+    )
+    .join("");
+
+  invoiceOutput.innerHTML = `
+    <div class="invoice-preview-meta">
+      <span><strong>Numer:</strong> ${invoice.invoice_id}</span>
+      <span><strong>Data wystawienia:</strong> ${invoice.issued_at}</span>
+      <span><strong>Data sprzedaży:</strong> ${invoice.sale_date}</span>
+      ${invoice.payment_term ? `<span><strong>Termin płatności:</strong> ${invoice.payment_term} dni</span>` : ''}
+    </div>
+    <div class="invoice-preview-header">
+      <div class="invoice-preview-card">
+        <h4>Nabywca</h4>
+        ${
+          hasClientData
+            ? `
+              <p>${client.name || "---"}</p>
+              <p>${client.address_line || "---"}</p>
+              <p>${client.postal_code || ""} ${client.city || ""}</p>
+              <p>${client.tax_id ? `NIP: ${client.tax_id}` : ""}</p>
+              ${client.phone ? `<p>Tel: ${client.phone}</p>` : ''}
+            `
+            : "<p>Brak danych nabywcy.</p>"
+        }
+      </div>
+      <div class="invoice-preview-card">
+        <h4>Sprzedawca</h4>
+        <p>${currentBusiness.company_name}</p>
+        <p>${currentBusiness.owner_name}</p>
+        <p>${currentBusiness.address_line}</p>
+        <p>${currentBusiness.postal_code} ${currentBusiness.city}</p>
+        <p>NIP: ${currentBusiness.tax_id}</p>
+        <p>Konto: ${currentBusiness.bank_account}</p>
+      </div>
+    </div>
+    <table>
+      <thead>
+        <tr>
+          <th>Nazwa</th>
+          <th>Ilość</th>
+          <th>Jednostka</th>
+          <th>Cena jedn. netto</th>
+          <th>Wartość netto (pozycja)</th>
+          <th>Stawka VAT</th>
+          <th>Kwota VAT (pozycja)</th>
+          <th>Wartość brutto</th>
+        </tr>
+      </thead>
+      <tbody>${itemsRows}</tbody>
+    </table>
+    <div class="rate-summary">
+      <h4>Podsumowanie stawek</h4>
+      ${summaryRows}
+    </div>
+    <div class="invoice-preview-summary">
+      <span>Netto: ${formatCurrency(invoice.totals.net)}</span>
+      <span>VAT: ${formatCurrency(invoice.totals.vat)}</span>
+      <span>Brutto: ${formatCurrency(invoice.totals.gross)}</span>
+    </div>
+    ${
+      invoice.exemption_note
+        ? `<div class="invoice-preview-note"><strong>Podstawa prawna zwolnienia:</strong> ${invoice.exemption_note}</div>`
+        : ""
+    }
+  `;
+}
+
+function drawPartyBox(doc, title, lines, x, y, width) {
+  const lineHeight = 5;
+  const wrappedLines = lines.flatMap((line) => doc.splitTextToSize(line, width));
+  const boxHeight = wrappedLines.length * lineHeight + 14;
+
+  doc.roundedRect(x - 4, y - 8, width + 8, boxHeight, 2, 2);
+  doc.setFontSize(11);
+  doc.text(title, x, y);
+  doc.setFontSize(10);
+
+  let cursor = y + 5;
+  wrappedLines.forEach((line) => {
+    doc.text(line, x, cursor);
+    cursor += lineHeight;
+  });
+
+  return y - 8 + boxHeight;
+}
+
+function arrayBufferToBase64(buffer) {
+  const bytes = new Uint8Array(buffer);
+  const chunkSize = 0x8000;
+  let binary = "";
+  for (let offset = 0; offset < bytes.length; offset += chunkSize) {
+    const chunk = bytes.subarray(offset, Math.min(offset + chunkSize, bytes.length));
+    binary += String.fromCharCode.apply(null, chunk);
+  }
+  return btoa(binary);
+}
+
+const PDF_FONT_FILE = "Roboto-VariableFont_wdth,wght.ttf";
+const PDF_FONT_NAME = "RobotoPolish";
+
+async function ensurePdfFont() {
+  if (pdfFontPromise) {
+    return pdfFontPromise;
+  }
+
+  if (!window.jspdf || !window.jspdf.jsPDF) {
+    throw new Error("Biblioteka jsPDF nie została załadowana.");
+  }
+
+  const { jsPDF } = window.jspdf;
+  const loadBase64 = async () => {
+    if (typeof window !== "undefined" && window.PDF_FONT_BASE64) {
+      return window.PDF_FONT_BASE64;
+    }
+    const response = await fetch(`/${encodeURIComponent(PDF_FONT_FILE)}`);
+    if (!response.ok) {
+      throw new Error(`Nie udało się pobrać czcionki Roboto (status ${response.status}).`);
+    }
+    const buffer = await response.arrayBuffer();
+    return arrayBufferToBase64(buffer);
+  };
+
+  pdfFontPromise = loadBase64().then((data) => {
+    pdfFontBase64 = data;
+    return data;
+  });
+
+  return pdfFontPromise;
+}
+
+async function generatePdf(business, invoice, logo) {
+  if (!window.jspdf || !window.jspdf.jsPDF) {
+    alert("Biblioteka jsPDF nie została załadowana. Sprawdź połączenie z internetem.");
+    return;
+  }
+
+  let fontBase64;
+  try {
+    fontBase64 = await ensurePdfFont();
+  } catch (error) {
+    alert(error.message || "Nie udało się przygotować czcionki do PDF.");
+    return;
+  }
+
+  const { jsPDF } = window.jspdf;
+  const doc = new jsPDF({ orientation: "portrait", unit: "mm", format: "a4" });
+  const marginX = 18;
+  let cursorY = 20;
+  const pageWidth = doc.internal.pageSize.getWidth();
+
+  if (!doc.getFontList()[PDF_FONT_NAME]) {
+    const embeddedFont = pdfFontBase64 || fontBase64;
+    doc.addFileToVFS(PDF_FONT_FILE, embeddedFont);
+    doc.addFont(PDF_FONT_FILE, PDF_FONT_NAME, "normal");
+  }
+
+  doc.setFont(PDF_FONT_NAME, "normal");
+  if (logo && logo.data && logo.mime_type) {
+    const format = logo.mime_type === "image/png" ? "PNG" : "JPEG";
+    const dataUrl = logo.data_url || `data:${logo.mime_type};base64,${logo.data}`;
+    try {
+      let logoWidth = 45;
+      let logoHeight = 18;
+      if (doc.getImageProperties) {
+        const props = doc.getImageProperties(dataUrl);
+        if (props?.width && props?.height) {
+          const ratio = props.height / props.width;
+          logoHeight = logoWidth * ratio;
+          if (logoHeight > 22) {
+            logoHeight = 22;
+            logoWidth = logoHeight / ratio;
+          }
+        }
+      }
+      const logoX = pageWidth - marginX - logoWidth;
+      const logoY = 14;
+      doc.addImage(dataUrl, format, logoX, logoY, logoWidth, logoHeight);
+    } catch (error) {
+      console.warn("Nie udało się dodać logo do PDF:", error);
+    }
+  }
+  doc.setFontSize(16);
+  doc.text(`Faktura ${invoice.invoice_id}`, marginX, cursorY);
+  doc.setFontSize(10);
+  doc.text(`Data wystawienia: ${invoice.issued_at}`, marginX, cursorY + 6);
+  doc.text(`Data sprzedaży: ${invoice.sale_date}`, marginX, cursorY + 12);
+
+  cursorY += 22;
+  const columnWidth = 85;
+  const sellerX = marginX + columnWidth + 12;
+
+  const clientLines = invoice.client && (invoice.client.name || invoice.client.address_line || invoice.client.city || invoice.client.tax_id || invoice.client.phone)
+    ? [
+        invoice.client.name || "---",
+        invoice.client.address_line || "",
+        `${(invoice.client.postal_code || "").trim()} ${(invoice.client.city || "").trim()}`.trim(),
+        invoice.client.tax_id ? `NIP: ${invoice.client.tax_id}` : "",
+        invoice.client.phone ? `Tel: ${invoice.client.phone}` : "",
+      ].filter((line) => line && line.trim())
+    : ["Brak danych nabywcy"];
+
+  const sellerLines = [
+    business.company_name,
+    business.owner_name,
+    business.address_line,
+    `${business.postal_code} ${business.city}`.trim(),
+    `NIP: ${business.tax_id}`,
+    `Konto: ${business.bank_account}`,
+  ];
+
+  const buyerBottom = drawPartyBox(doc, "NABYWCA", clientLines, marginX, cursorY, columnWidth);
+  const sellerBottom = drawPartyBox(doc, "SPRZEDAWCA", sellerLines, sellerX, cursorY, columnWidth);
+  cursorY = Math.max(buyerBottom, sellerBottom) + 12;
+
+  const tableColumns = [
+    { key: "name", label: "Nazwa", width: 44 },
+    { key: "quantity", label: "Ilość", width: 14 },
+    { key: "unit", label: "Jednostka", width: 14 },
+    { key: "unitNet", label: "Cena jedn. netto", width: 23 },
+    { key: "netTotal", label: "Wartość netto", width: 23 },
+    { key: "vatLabel", label: "Stawka VAT", width: 14 },
+    { key: "vatAmount", label: "Kwota VAT", width: 21 },
+    { key: "grossTotal", label: "Wartość brutto", width: 21 },
+  ];
+  const lineHeight = 5;
+  const headerLineHeight = 4.2;
+  tableColumns.forEach((column) => {
+    column.headerLines = doc.splitTextToSize(column.label, column.width - 4);
+  });
+  const headerHeight = Math.max(...tableColumns.map((column) => column.headerLines.length * headerLineHeight + 3));
+
+  const tableWidth = tableColumns.reduce((sum, column) => sum + column.width, 0);
+
+  doc.setFillColor(241, 243, 247);
+  doc.rect(marginX, cursorY, tableWidth, headerHeight, "F");
+  doc.rect(marginX, cursorY, tableWidth, headerHeight);
+  let offsetX = marginX;
+  doc.setFontSize(10);
+  tableColumns.forEach((column) => {
+    doc.rect(offsetX, cursorY, column.width, headerHeight);
+    column.headerLines.forEach((line, index) => {
+      const textY = cursorY + 4 + index * headerLineHeight;
+      doc.text((line || "").trim(), offsetX + 2, textY);
+    });
+    offsetX += column.width;
+  });
+  cursorY += headerHeight;
+
+  const invoiceItems = Array.isArray(invoice.items) ? invoice.items : [];
+  invoiceItems.forEach((item) => {
+    const quantity = formatQuantity(item.quantity);
+    const unitLabel = UNIT_OPTIONS.some((option) => option.value === item.unit) ? item.unit : DEFAULT_UNIT;
+    const unitNet = formatCurrency(item.unit_price_net);
+    const netTotal = formatCurrency(item.net_total);
+    const vatAmount = formatCurrency(item.vat_amount);
+    const grossTotal = formatCurrency(item.gross_total);
+
+    const wrapText = (text, width) =>
+      doc
+        .splitTextToSize(text ?? "", width)
+        .map((line) => line.trim());
+
+    const columnData = tableColumns.map((column) => {
+      switch (column.key) {
+        case "name":
+          return wrapText(item.name, column.width - 4);
+        case "quantity":
+          return [quantity];
+        case "unit":
+          return [unitLabel];
+        case "unitNet":
+          return [unitNet];
+        case "netTotal":
+          return [netTotal];
+        case "vatLabel":
+          return [item.vat_label];
+        case "vatAmount":
+          return [vatAmount];
+        case "grossTotal":
+          return [grossTotal];
+        default:
+          return [""];
+      }
+    });
+
+    const rowHeight = Math.max(...columnData.map((data) => data.length)) * lineHeight + 2;
+    offsetX = marginX;
+    tableColumns.forEach((column, index) => {
+      doc.rect(offsetX, cursorY, column.width, rowHeight);
+      const lines = columnData[index];
+      lines.forEach((line, lineIndex) => {
+        const textY = cursorY + (lineIndex + 1) * lineHeight;
+        const content = (line || "").trim();
+        doc.text(content, offsetX + 2, textY);
+      });
+      offsetX += column.width;
+    });
+
+    cursorY += rowHeight;
+  });
+
+  cursorY += 10;
+  doc.setFontSize(11);
+  doc.text("Podsumowanie stawek:", marginX, cursorY);
+  cursorY += 6;
+
+  const summaryEntries = Array.isArray(invoice.summary) ? invoice.summary : [];
+  summaryEntries.forEach((entry) => {
+    const summaryLine = `${entry.vat_label} – Netto: ${formatCurrency(entry.net_total)} / VAT: ${formatCurrency(entry.vat_total)} / Brutto: ${formatCurrency(entry.gross_total)}`;
+    const wrapped = doc.splitTextToSize(summaryLine, 170);
+    wrapped.forEach((line) => {
+      doc.text((line || "").trim(), marginX, cursorY);
+      cursorY += lineHeight;
+    });
+  });
+
+  cursorY += 6;
+  doc.setFontSize(12);
+  doc.text(`Suma netto: ${formatCurrency(invoice.totals.net)}`, marginX, cursorY);
+  doc.text(`Suma VAT: ${formatCurrency(invoice.totals.vat)}`, marginX, cursorY + 6);
+  doc.text(`Suma brutto: ${formatCurrency(invoice.totals.gross)}`, marginX, cursorY + 12);
+  if (invoice.payment_term) {
+    doc.text(`Termin płatności: ${invoice.payment_term} dni`, marginX, cursorY + 18);
+  }
+  cursorY += 30;
+
+  if (invoice.exemption_note) {
+    doc.setFontSize(10);
+    const noteLines = doc.splitTextToSize(`Podstawa prawna zwolnienia: ${invoice.exemption_note}`, 170);
+    doc.text(noteLines, marginX, cursorY);
+  }
+
+  doc.save(`${invoice.invoice_id}.pdf`);
+}
+
+async function loadBusinessData() {
+  const data = await apiRequest("/api/business", {}, true);
+  currentBusiness = data.business;
+  renderBusinessDisplay(currentBusiness);
+  fillBusinessForm(currentBusiness);
+  setBusinessFormVisibility(false);
+}
+
+async function loadLogo() {
+  try {
+    const data = await apiRequest("/api/logo", {}, true);
+    currentLogo = data.logo || null;
+  } catch (error) {
+    console.error("Nie udało się pobrać logo:", error);
+    currentLogo = null;
+  }
+  updateLogoPreview();
+}
+
+function resetInvoiceForm() {
+  invoiceForm.reset();
+  customExemptionNote = "";
+  updateExemptionVisibility(false);
+  itemsBody.innerHTML = "";
+  createItemRow();
+  const now = new Date();
+  const year = now.getFullYear();
+  const month = String(now.getMonth() + 1).padStart(2, "0");
+  const day = String(now.getDate()).padStart(2, "0");
+  if (invoiceForm.elements.saleDate) {
+    invoiceForm.elements.saleDate.value = `${year}-${month}-${day}`;
+  }
+  updateTotals();
+}
+
+async function bootstrapApp() {
+  try {
+    await loadBusinessData();
+    await loadLogo();
+    exitInvoiceEdit();
+    resetInvoiceForm();
+    invoiceResult.classList.add("hidden");
+    lastInvoice = null;
+    await refreshInvoices();
+    await refreshSummary();
+    updateLoginLabel();
+    setAppState("app");
+    activeView = "invoice-builder";
+    setActiveView(activeView);
+  } catch (error) {
+    console.error(error);
+    authToken = null;
+    currentLogin = "";
+    sessionStorage.removeItem("invoiceAuthToken");
+    sessionStorage.removeItem("invoiceLogin");
+    showFeedback(loginFeedback, error.message || "Nie udało się pobrać danych konta.");
+    setAppState("auth");
+  }
+}
+
+async function initialize() {
+  exitInvoiceEdit();
+  resetInvoiceForm();
+  updateLogoPreview();
+  updateSummaryCards({});
+  updateSummaryChart({});
+  setActiveView("invoice-builder");
+  setAppState("auth");
+  closeRegisterPanel({ resetForm: true, focusTrigger: false });
+  clearFeedback(registerFeedback);
+  clearFeedback(loginFeedback);
+  try {
+    const status = await apiRequest("/api/status");
+    if (typeof status.max_logo_size === "number") {
+      maxLogoSize = status.max_logo_size;
+    }
+    if (status.legacy_login_hint) {
+      legacyLoginHint.textContent = `Zaloguj się korzystajac ze starego loginu "${status.legacy_login_hint}", a nastepnie dodaj adres email.`;
+      legacyLoginHint.classList.remove("hidden");
+    } else {
+      legacyLoginHint.classList.add("hidden");
+      legacyLoginHint.textContent = "";
+    }
+
+    if (authToken) {
+      await bootstrapApp();
+    }
+  } catch (error) {
+    console.error(error);
+    showFeedback(registerFeedback, "Nie udało się nawiązać połączenia z serwerem.");
+  }
+}
+
+if (registerForm && registerFeedback && loginFeedback) {
+  registerForm.addEventListener("submit", async (event) => {
+    event.preventDefault();
+    clearFeedback(registerFeedback);
+    clearFeedback(loginFeedback);
+
+    const formData = new FormData(registerForm);
+    const emailValue = formData.get("email")?.toString().trim() ?? "";
+    const password = formData.get("password")?.toString() ?? "";
+    const confirmPassword = formData.get("confirm_password")?.toString() ?? "";
+
+    if (!emailValue) {
+      showFeedback(registerFeedback, "Podaj adres email.");
+      return;
+    }
+    if (password !== confirmPassword) {
+      showFeedback(registerFeedback, "Hasła musza byc identyczne.");
+      return;
+    }
+
+    if (password.trim().length < 4) {
+      showFeedback(registerFeedback, "Hasło musi miec co najmniej 4 znaki.");
+      return;
+    }
+
+    const payload = {
+      email: emailValue,
+      company_name: formData.get("company_name")?.toString().trim(),
+      owner_name: formData.get("owner_name")?.toString().trim(),
+      address_line: formData.get("address_line")?.toString().trim(),
+      postal_code: formData.get("postal_code")?.toString().trim(),
+      city: formData.get("city")?.toString().trim(),
+      tax_id: formData.get("tax_id")?.toString().trim(),
+      bank_account: formData.get("bank_account")?.toString().trim(),
+      password,
+    };
+
+    try {
+      await apiRequest("/api/setup", { method: "POST", body: payload });
+      showFeedback(registerFeedback, "Konto utworzone. Możesz sie zalogowac.", "success");
+      if (loginForm && loginForm.elements.email) {
+        loginForm.elements.email.value = emailValue;
+      }
+      registerForm.reset();
+      setTimeout(() => {
+        closeRegisterPanel({ resetForm: true, focusTrigger: false });
+        clearFeedback(registerFeedback);
+        clearFeedback(loginFeedback);
+        showFeedback(loginFeedback, "Konto utworzone. Zaloguj się haslem.", "success");
+        if (loginForm) {
+          const passwordInput = loginForm.elements.password;
+          if (passwordInput) {
+            passwordInput.focus();
+          }
+        }
+      }, 1600);
+    } catch (error) {
+      showFeedback(registerFeedback, error.message || "Nie udało się utworzyć konta.");
+    }
+  });
+}
+
+if (loginForm && loginFeedback) {
+  const setLoginSubmittingState = (isSubmitting) => {
+    if (!loginSubmitButton) {
+      return;
+    }
+    if (isSubmitting) {
+      loginSubmitButton.disabled = true;
+      loginSubmitButton.setAttribute("data-loading", "true");
+      loginSubmitButton.textContent = "Logowanie...";
+    } else {
+      loginSubmitButton.disabled = false;
+      loginSubmitButton.textContent = loginSubmitButtonDefaultText;
+      loginSubmitButton.removeAttribute("data-loading");
+    }
+  };
+
+  loginForm.addEventListener("submit", async (event) => {
+    event.preventDefault();
+    clearFeedback(loginFeedback);
+
+    const emailElement = loginForm.elements.email;
+    const emailValue = emailElement ? emailElement.value.trim() : "";
+    const password = loginForm.elements.password.value;
+
+    if (!emailValue) {
+      showFeedback(loginFeedback, "Podaj adres email.");
+      return;
+    }
+
+    if (!password) {
+      showFeedback(loginFeedback, "Podaj hasło.");
+      return;
+    }
+
+    setLoginSubmittingState(true);
+
+    try {
+      const response = await apiRequest("/api/login", { method: "POST", body: { email: emailValue, password } });
+      authToken = response.token;
+      currentLogin = response.email || response.login || emailValue;
+      sessionStorage.setItem("invoiceAuthToken", authToken);
+      sessionStorage.setItem("invoiceLogin", currentLogin);
+      loginForm.reset();
+      await bootstrapApp();
+    } catch (error) {
+      const errorMessage = error instanceof Error ? error.message : String(error || "");
+      let feedbackMessage = errorMessage || "Logowanie nie powiodło się.";
+      if (/nieprawidlowy (login|email) lub hasło/i.test(errorMessage)) {
+        feedbackMessage = "Podany email lub hasło są nieprawidłowe. Utwórz konto, jeśli jeszcze go nie masz.";
+      } else if (/brak autoryzacji/i.test(errorMessage) || /brak tokenu autoryzacyjnego/i.test(errorMessage)) {
+        feedbackMessage = "Sesja wygasła. Zaloguj się ponownie.";
+      } else if (/failed to fetch|networkerror/i.test(errorMessage) || error instanceof TypeError) {
+        feedbackMessage = "Nie udało się nawiązać połączenia z serwerem. Sprawdź, czy aplikacja serwerowa jest uruchomiona.";
+      }
+      showFeedback(loginFeedback, feedbackMessage);
+    } finally {
+      setLoginSubmittingState(false);
+    }
+  });
+}
+
+if (toggleBusinessFormButton && businessForm && businessFeedback) {
+  toggleBusinessFormButton.addEventListener("click", () => {
+    const isVisible = !businessForm.classList.contains("hidden");
+    if (!isVisible) {
+      fillBusinessForm(currentBusiness);
+      setBusinessFormVisibility(true, { preserveFeedback: true });
+    } else {
+      setBusinessFormVisibility(false);
+    }
+  });
+}
+
+if (cancelBusinessUpdateButton && businessForm && businessFeedback && toggleBusinessFormButton) {
+  cancelBusinessUpdateButton.addEventListener("click", () => {
+    setBusinessFormVisibility(false);
+  });
+}
+
+if (businessForm && businessFeedback) {
+  businessForm.addEventListener("submit", async (event) => {
+    event.preventDefault();
+    clearFeedback(businessFeedback);
+
+    const formData = new FormData(businessForm);
+    const payload = {
+      company_name: formData.get("company_name")?.toString().trim(),
+      owner_name: formData.get("owner_name")?.toString().trim(),
+      address_line: formData.get("address_line")?.toString().trim(),
+      postal_code: formData.get("postal_code")?.toString().trim(),
+      city: formData.get("city")?.toString().trim(),
+      tax_id: formData.get("tax_id")?.toString().trim(),
+      bank_account: formData.get("bank_account")?.toString().trim(),
+    };
+
+    try {
+      const data = await apiRequest("/api/business", { method: "PUT", body: payload }, true);
+      currentBusiness = data.business;
+      renderBusinessDisplay(currentBusiness);
+      fillBusinessForm(currentBusiness);
+      setBusinessFormVisibility(false, { preserveFeedback: true });
+      showFeedback(businessFeedback, "Dane sprzedawcy zaktualizowane.", "success");
+      setTimeout(() => clearFeedback(businessFeedback), 2000);
+    } catch (error) {
+      showFeedback(businessFeedback, error.message || "Nie udało się zaktualizować danych.");
+    }
+  });
+}
+
+if (exemptionReasonSelect) {
+  populateExemptionReasons();
+  let previousReasonValue = exemptionReasonSelect.value;
+  applyExemptionReasonSelection({ preserveCustom: true });
+  exemptionReasonSelect.addEventListener("change", () => {
+    if (previousReasonValue === "custom" && exemptionNoteInput) {
+      customExemptionNote = exemptionNoteInput.value.trim();
+    }
+    previousReasonValue = exemptionReasonSelect.value;
+    applyExemptionReasonSelection();
+    if (exemptionReasonSelect.value === "custom" && exemptionNoteInput) {
+      exemptionNoteInput.focus();
+    }
+  });
+}
+
+if (exemptionNoteInput) {
+  exemptionNoteInput.addEventListener("input", () => {
+    if (exemptionReasonSelect && exemptionReasonSelect.value === "custom") {
+      customExemptionNote = exemptionNoteInput.value;
+    }
+  });
+}
+
+if (invoiceForm) {
+  invoiceForm.addEventListener("submit", async (event) => {
+    event.preventDefault();
+    try {
+      const payload = collectInvoicePayload();
+      let response;
+      if (editingInvoiceId) {
+        response = await apiRequest(`/api/invoices/${encodeURIComponent(editingInvoiceId)}`, { method: "PUT", body: payload }, true);
+        exitInvoiceEdit();
+      } else {
+        response = await apiRequest("/api/invoices", { method: "POST", body: payload }, true);
+      }
+      lastInvoice = response.invoice;
+      renderInvoicePreview(lastInvoice);
+      if (invoiceResult) {
+        invoiceResult.classList.remove("hidden");
+      }
+      await refreshInvoices();
+      await refreshSummary();
+      resetInvoiceForm();
+    } catch (error) {
+      alert(error.message || "Nie udało się zapisać faktury.");
+    }
+  });
+}
+
+if (addItemButton) {
+  addItemButton.addEventListener("click", () => {
+    createItemRow();
+  });
+}
+
+if (downloadButton) {
+  downloadButton.addEventListener("click", async () => {
+    if (!lastInvoice || !currentBusiness) {
+      alert("Brak faktury do pobrania. Wygeneruj ją najpierw.");
+      return;
+    }
+    await generatePdf(currentBusiness, lastInvoice, currentLogo);
+  });
+}
+
+if (logoutButton) {
+  logoutButton.addEventListener("click", () => {
+    authToken = null;
+    currentLogin = "";
+    sessionStorage.removeItem("invoiceAuthToken");
+    sessionStorage.removeItem("invoiceLogin");
+    lastInvoice = null;
+    currentBusiness = null;
+    currentLogo = null;
+    invoicesCache = [];
+    exitInvoiceEdit();
+    resetInvoiceForm();
+    setBusinessFormVisibility(false);
+    if (invoiceResult) {
+      invoiceResult.classList.add("hidden");
+    }
+    updateLogoPreview();
+    updateLoginLabel();
+    renderInvoicesTable([]);
+    updateSummaryCards({});
+    updateSummaryChart({});
+    closeRegisterPanel({ resetForm: true, focusTrigger: true });
+    clearFeedback(registerFeedback);
+    clearFeedback(loginFeedback);
+    clearFeedback(businessFeedback);
+    clearFeedback(logoFeedback);
+    clearFeedback(dashboardFeedback);
+    setAppState("auth");
+  });
+}
+
+appNavButtons.forEach((button) => {
+  button.addEventListener("click", () => {
+    setActiveView(button.dataset.view);
+  });
+});
+
+if (filterStartDate) {
+  filterStartDate.addEventListener("change", applyInvoiceFilters);
+}
+if (filterEndDate) {
+  filterEndDate.addEventListener("change", applyInvoiceFilters);
+}
+if (clearFiltersButton) {
+  clearFiltersButton.addEventListener("click", () => {
+    if (filterStartDate) {
+      filterStartDate.value = "";
+    }
+    if (filterEndDate) {
+      filterEndDate.value = "";
+    }
+    applyInvoiceFilters();
+  });
+}
+
+if (showRegisterButton) {
+  showRegisterButton.addEventListener("click", () => {
+    openRegisterPanel();
+  });
+}
+
+if (backToLoginButton) {
+  backToLoginButton.addEventListener("click", () => {
+    closeRegisterPanel({ resetForm: false, focusTrigger: true });
+  });
+}
+
+if (cancelRegisterButton) {
+  cancelRegisterButton.addEventListener("click", () => {
+    closeRegisterPanel({ resetForm: true, focusTrigger: true });
+  });
+}
+
+if (logoInput) {
+  logoInput.addEventListener("change", (event) => {
+    const file = event.target.files?.[0];
+    if (!file) {
+      return;
+    }
+    clearFeedback(logoFeedback);
+    if (file.size > maxLogoSize) {
+      showFeedback(logoFeedback, `Logo jest zbyt duze. Maksymalny rozmiar to ${(maxLogoSize / 1024).toFixed(0)} KB.`);
+      logoInput.value = "";
+      return;
+    }
+    const reader = new FileReader();
+    reader.onload = async () => {
+      try {
+        const base64 = reader.result?.toString();
+        if (!base64) {
+          throw new Error("Nie udało się odczytać pliku.");
+        }
+        const response = await apiRequest(
+          "/api/logo",
+          {
+            method: "POST",
+            body: {
+              filename: file.name,
+              mime_type: file.type,
+              content: base64,
+            },
+          },
+          true
+        );
+        currentLogo = response.logo;
+        updateLogoPreview();
+        showFeedback(logoFeedback, "Logo zapisane.", "success");
+      } catch (error) {
+        showFeedback(logoFeedback, error.message || "Nie udało się zapisać logo.");
+      } finally {
+        logoInput.value = "";
+      }
+    };
+    reader.onerror = () => {
+      showFeedback(logoFeedback, "Nie udało się wczytać pliku logo.");
+      logoInput.value = "";
+    };
+    reader.readAsDataURL(file);
+  });
+}
+
+if (removeLogoButton) {
+  removeLogoButton.addEventListener("click", async () => {
+    clearFeedback(logoFeedback);
+    if (!currentLogo) {
+      showFeedback(logoFeedback, "Brak logo do usunięcia.");
+      return;
+    }
+    try {
+      await apiRequest("/api/logo", { method: "DELETE" }, true);
+      currentLogo = null;
+      updateLogoPreview();
+      showFeedback(logoFeedback, "Logo usunięte.", "success");
+    } catch (error) {
+      showFeedback(logoFeedback, error.message || "Nie udało się usunąć logo.");
+    }
+  });
+}
+
+if (cancelEditInvoiceButton) {
+  cancelEditInvoiceButton.addEventListener("click", () => {
+    exitInvoiceEdit();
+    resetInvoiceForm();
+  });
+}
+
+initialize().catch((error) => {
+  console.error(error);
+  showFeedback(registerFeedback, "Nie udało się uruchomić aplikacji.");
+});

requirements.txt

@@ -1,6 +1 @@
 Flask>=2.3,<3.0
-
-SQLAlchemy
-psycopg2-binary
-uvicorn
-fastapi

server.py

@@ -1,16 +1,11 @@
+import base64
+import binascii
 import hashlib
 import json
 import os
-from flask import Flask, render_template, request, redirect, url_for
-from sqlalchemy import create_engine, text
-
-from flask import render_template
-
-app = Flask(__name__)
-engine = create_engine(os.environ["DATABASE_URL"], pool_pre_ping=True)
-
+import re
 import uuid
-from datetime import datetime
+from datetime import date, datetime, timedelta
 from decimal import Decimal, ROUND_HALF_UP, getcontext
 from pathlib import Path
 from typing import Any, Dict, List, Optional, Tuple
@@ -21,6 +16,9 @@ APP_ROOT = Path(__file__).parent.resolve()
 DATA_DIR = Path(os.environ.get("DATA_DIR", APP_ROOT))
 DATA_FILE = DATA_DIR / "web_invoice_store.json"
 INVOICE_HISTORY_LIMIT = 200
+MAX_LOGO_SIZE = 512 * 1024  # 512 KB
+TOKEN_TTL = timedelta(hours=12)
+ALLOWED_LOGO_MIME_TYPES = {"image/png", "image/jpeg"}
 
 VAT_RATES: Dict[str, Optional[Decimal]] = {
     "23": Decimal("0.23"),
@@ -31,7 +29,11 @@ VAT_RATES: Dict[str, Optional[Decimal]] = {
     "NP": None,
 }
 
-SESSION_TOKENS: Dict[str, datetime] = {}
+DEFAULT_UNIT = "szt."
+ALLOWED_UNITS = {"szt.", "godz."}
+PASSWORD_MIN_LENGTH = 4
+
+SESSION_TOKENS: Dict[str, Dict[str, Any]] = {}
 
 ALLOWED_STATIC = {
     "index.html",
@@ -41,27 +43,8 @@ ALLOWED_STATIC = {
     "Roboto-VariableFont_wdth,wght.ttf",
 }
 
-@app.route("/")
-def index():
-    # Pobierz ostatnie notatki i pokaż w HTML
-    with engine.begin() as conn:
-        rows = conn.execute(text(
-            "SELECT id, body, created_at FROM notes ORDER BY id DESC LIMIT 20"
-        )).mappings().all()
-    return render_template("index.html", notes=rows)
-
-    if __name__ == "__main__":  # Sprawdzamy, czy uruchamiamy główny skrypt
-        port = int(os.environ.get("PORT", "7860"))  # Wcięcie pod warunkiem
-        app.run(host="0.0.0.0", port=port, debug=False)  # Wcięcie pod warunkiem
-
-
-@app.post("/add")
-def add():
-    body = request.form.get("body","").strip()
-    if body:
-        with engine.begin() as conn:
-            conn.execute(text("INSERT INTO notes (body) VALUES (:b)"), {"b": body})
-    return redirect(url_for("index"))
+
+app = Flask(__name__, static_folder=str(APP_ROOT), static_url_path="")
 
 getcontext().prec = 10
 
@@ -81,11 +64,92 @@ def hash_password(password: str) -> str:
     return hashlib.sha256(password.encode("utf-8")).hexdigest()
 
 
+EMAIL_PATTERN = re.compile(r"^[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}$")
+
+
+def normalize_email(raw_email: str) -> Tuple[str, str]:
+    display_email = (raw_email or "").strip()
+    if not display_email:
+        raise ValueError("Email nie moze byc pusty.")
+    if not EMAIL_PATTERN.fullmatch(display_email):
+        raise ValueError("Podaj poprawny adres email.")
+    return display_email.lower(), display_email
+
+
+def sanitize_filename(filename: Optional[str]) -> str:
+    if not filename:
+        return "logo"
+    name = str(filename).split("/")[-1].split("\\")[-1]
+    sanitized = re.sub(r"[^A-Za-z0-9._-]", "_", name).strip("._")
+    return sanitized or "logo"
+
+
+def find_account_identifier(accounts: Dict[str, Any], identifier: str) -> Tuple[Optional[str], Optional[Dict[str, Any]]]:
+    key = (identifier or "").strip().lower()
+    if not key:
+        return None, None
+    account = accounts.get(key)
+    if account:
+        return key, account
+    for login_key, candidate in accounts.items():
+        candidate_login = (candidate.get("login") or "").strip().lower()
+        candidate_email = (candidate.get("email") or "").strip().lower()
+        if key in {candidate_login, candidate_email}:
+            return login_key, candidate
+    return None, None
+
+
+
+
+def migrate_store_if_needed(data: Dict[str, Any]) -> Tuple[Dict[str, Any], bool]:
+    if "accounts" in data:
+        accounts = data.get("accounts") or {}
+        for login, account in accounts.items():
+            account.setdefault("login", login)
+            email = (account.get("email") or account.get("login") or "").strip()
+            account["email"] = email
+            account.setdefault("business", None)
+            account.setdefault("password_hash", None)
+            account.setdefault("invoices", [])
+            account.setdefault("logo", None)
+            account.setdefault("created_at", datetime.utcnow().isoformat(timespec="seconds"))
+        data["accounts"] = accounts
+        return data, False
+
+    legacy_business = data.get("business")
+    legacy_password = data.get("password_hash")
+    legacy_invoices = data.get("invoices", [])
+    legacy_logo = data.get("logo")
+
+    accounts: Dict[str, Any] = {}
+    legacy_login_hint = None
+    if legacy_password:
+        login_key = "admin"
+        accounts[login_key] = {
+            "login": login_key,
+            "password_hash": legacy_password,
+            "business": legacy_business,
+            "invoices": legacy_invoices,
+            "logo": legacy_logo,
+            "created_at": datetime.utcnow().isoformat(timespec="seconds"),
+        }
+        legacy_login_hint = login_key
+
+    migrated: Dict[str, Any] = {"accounts": accounts}
+    if legacy_login_hint:
+        migrated["legacy_login_hint"] = legacy_login_hint
+    return migrated, True
+
+
 def load_store() -> Dict[str, Any]:
     if not DATA_FILE.exists():
-        return {"business": None, "password_hash": None, "invoices": []}
+        return {"accounts": {}}
     with DATA_FILE.open("r", encoding="utf-8") as handle:
-        return json.load(handle)
+        data = json.load(handle)
+    normalized, migrated = migrate_store_if_needed(data)
+    if migrated:
+        save_store(normalized)
+    return normalized
 
 
 def save_store(data: Dict[str, Any]) -> None:
@@ -94,9 +158,58 @@ def save_store(data: Dict[str, Any]) -> None:
         json.dump(data, handle, ensure_ascii=False, indent=2)
 
 
-def ensure_configured(data: Dict[str, Any]) -> None:
-    if not data.get("business") or not data.get("password_hash"):
-        raise ValueError("Aplikacja nie zostala skonfigurowana.")
+def ensure_business_configured(account: Dict[str, Any]) -> None:
+    if not account.get("business"):
+        raise ValueError("Dane sprzedawcy nie zostaly uzupelnione.")
+
+
+def ensure_account_defaults(account: Dict[str, Any], login_key: str) -> Dict[str, Any]:
+    account.setdefault("login", login_key)
+    email_value = (account.get("email") or account.get("login") or "").strip()
+    account["email"] = email_value
+    account.setdefault("business", None)
+    account.setdefault("password_hash", None)
+    invoices = account.setdefault("invoices", [])
+    if isinstance(invoices, list):
+        for invoice in invoices:
+            if not isinstance(invoice, dict):
+                continue
+            items = invoice.get("items")
+            if not isinstance(items, list):
+                continue
+            for item in items:
+                if not isinstance(item, dict):
+                    continue
+                raw_quantity = str(item.get("quantity", "")).strip()
+                try:
+                    quantity_decimal = _decimal(raw_quantity or "0")
+                except ValueError:
+                    quantity_decimal = Decimal("0")
+                if quantity_decimal > 0:
+                    quantity_integral = quantity_decimal.to_integral_value(rounding=ROUND_HALF_UP)
+                    item["quantity"] = str(int(quantity_integral))
+                unit_value = (item.get("unit") or "").strip()
+                if unit_value not in ALLOWED_UNITS:
+                    unit_value = DEFAULT_UNIT
+                item["unit"] = unit_value
+    account.setdefault("logo", None)
+    account.setdefault("created_at", datetime.utcnow().isoformat(timespec="seconds"))
+    return account
+
+
+def get_accounts(data: Dict[str, Any]) -> Dict[str, Any]:
+    accounts = data.setdefault("accounts", {})
+    for login_key, account in list(accounts.items()):
+        accounts[login_key] = ensure_account_defaults(account, login_key)
+    return accounts
+
+
+def get_account(data: Dict[str, Any], login_key: str) -> Dict[str, Any]:
+    accounts = get_accounts(data)
+    account = accounts.get(login_key)
+    if not account:
+        raise KeyError("Nie znaleziono konta.")
+    return account
 
 
 def parse_iso_date(value: Optional[str]) -> Optional[str]:
@@ -121,9 +234,18 @@ def compute_invoice_items(items_payload: List[Dict[str, Any]]) -> Tuple[List[Dic
         if not name:
             raise ValueError("Kazda pozycja musi miec nazwe.")
 
-        quantity = _decimal(raw.get("quantity", "0"))
-        if quantity <= 0:
+        quantity_decimal = _decimal(raw.get("quantity", "0"))
+        if quantity_decimal <= 0:
             raise ValueError("Ilosc musi byc wieksza od zera.")
+        quantity_integral = quantity_decimal.to_integral_value(rounding=ROUND_HALF_UP)
+        if quantity_decimal != quantity_integral:
+            raise ValueError("Ilosc musi byc liczba calkowita.")
+        quantity = int(quantity_integral)
+
+        unit_raw = str(raw.get("unit", "") or DEFAULT_UNIT).strip()
+        unit = unit_raw if unit_raw in ALLOWED_UNITS else None
+        if unit is None:
+            raise ValueError("Wybrano nieprawidlowa jednostke.")
 
         vat_code = str(raw.get("vat_code", "")).upper()
         if vat_code not in VAT_RATES:
@@ -144,16 +266,18 @@ def compute_invoice_items(items_payload: List[Dict[str, Any]]) -> Tuple[List[Dic
         unit_price_net = _quantize(unit_price_net)
         unit_price_gross = _quantize(unit_price_gross)
 
-        net_total = _quantize(unit_price_net * quantity)
-        vat_amount_total = _quantize(vat_amount * quantity if rate is not None else Decimal("0.00"))
-        gross_total = _quantize(unit_price_gross * quantity)
+        quantity_decimal_value = Decimal(quantity)
+        net_total = _quantize(unit_price_net * quantity_decimal_value)
+        vat_amount_total = _quantize(vat_amount * quantity_decimal_value if rate is not None else Decimal("0.00"))
+        gross_total = _quantize(unit_price_gross * quantity_decimal_value)
 
         vat_label = "ZW" if vat_code in {"ZW", "0"} else ("NP" if vat_code == "NP" else f"{vat_code}%")
 
         computed_items.append(
             {
                 "name": name,
-                "quantity": str(_quantize(quantity)),
+                "unit": unit,
+                "quantity": str(quantity),
                 "vat_code": vat_code,
                 "vat_label": vat_label,
                 "unit_price_net": str(unit_price_net),
@@ -188,7 +312,7 @@ def computed_summary_to_serializable(summary: Dict[str, Dict[str, Decimal]]) ->
     return serialized
 
 
-def compute_invoice(payload: Dict[str, Any], business: Dict[str, Any]) -> Dict[str, Any]:
+def compute_invoice(payload: Dict[str, Any], business: Dict[str, Any], *, invoice_id: Optional[str] = None, issued_at: Optional[str] = None) -> Dict[str, Any]:
     items_payload = payload.get("items", [])
     computed_items, summary = compute_invoice_items(items_payload)
 
@@ -196,10 +320,17 @@ def compute_invoice(payload: Dict[str, Any], business: Dict[str, Any]) -> Dict[s
     vat_sum = sum(Decimal(item["vat_amount"]) for item in computed_items)
     gross_sum = sum(Decimal(item["gross_total"]) for item in computed_items)
 
-    issued_at = datetime.now()
-    invoice_id = issued_at.strftime("FV-%Y%m%d-%H%M%S")
+    issued_timestamp = datetime.now()
+    if issued_at:
+        try:
+            issued_timestamp = datetime.strptime(issued_at, "%Y-%m-%d %H:%M")
+        except ValueError:
+            issued_timestamp = datetime.now()
 
-    sale_date = parse_iso_date(payload.get("sale_date")) or issued_at.strftime("%Y-%m-%d")
+    generated_id = invoice_id or issued_timestamp.strftime("FV-%Y%m%d-%H%M%S")
+
+    sale_date = parse_iso_date(payload.get("sale_date")) or issued_timestamp.strftime("%Y-%m-%d")
+    payment_term = payload.get("payment_term")
     client_payload = payload.get("client") or {}
     client = {
         "name": (client_payload.get("name") or "").strip(),
@@ -207,12 +338,14 @@ def compute_invoice(payload: Dict[str, Any], business: Dict[str, Any]) -> Dict[s
         "postal_code": (client_payload.get("postal_code") or "").strip(),
         "city": (client_payload.get("city") or "").strip(),
         "tax_id": (client_payload.get("tax_id") or "").strip(),
+        "phone": (client_payload.get("phone") or "").strip(),
     }
 
     invoice = {
-        "invoice_id": invoice_id,
-        "issued_at": issued_at.strftime("%Y-%m-%d %H:%M"),
+        "invoice_id": generated_id,
+        "issued_at": issued_timestamp.strftime("%Y-%m-%d %H:%M"),
         "sale_date": sale_date,
+        "payment_term": payment_term,
         "items": computed_items,
         "summary": computed_summary_to_serializable(summary),
         "totals": {
@@ -227,9 +360,17 @@ def compute_invoice(payload: Dict[str, Any], business: Dict[str, Any]) -> Dict[s
     return invoice
 
 
-def create_token() -> str:
+def cleanup_tokens() -> None:
+    now = datetime.utcnow()
+    expired = [token for token, payload in SESSION_TOKENS.items() if now - payload["issued_at"] > TOKEN_TTL]
+    for token in expired:
+        SESSION_TOKENS.pop(token, None)
+
+
+def create_token(login: str) -> str:
+    cleanup_tokens()
     token = uuid.uuid4().hex
-    SESSION_TOKENS[token] = datetime.now()
+    SESSION_TOKENS[token] = {"login": login, "issued_at": datetime.utcnow()}
     return token
 
 
@@ -241,10 +382,20 @@ def get_token() -> Optional[str]:
 
 
 def require_auth() -> str:
+    cleanup_tokens()
     token = get_token()
-    if not token or token not in SESSION_TOKENS:
+    if not token:
         raise PermissionError("Brak autoryzacji.")
-    return token
+    payload = SESSION_TOKENS.get(token)
+    if not payload:
+        raise PermissionError("Brak autoryzacji.")
+    payload["issued_at"] = datetime.utcnow()
+    return payload["login"]
+
+
+@app.route("/")
+def serve_index() -> Any:
+    return send_from_directory(app.static_folder, "index.html")
 
 
 @app.route("/<path:path>")
@@ -260,17 +411,29 @@ def serve_static(path: str) -> Any:
 @app.route("/api/status", methods=["GET"])
 def api_status() -> Any:
     data = load_store()
-    configured = bool(data.get("business") and data.get("password_hash"))
-    return jsonify({"configured": configured})
+    accounts = get_accounts(data)
+    response = {
+        "configured": bool(accounts),
+        "legacy_login_hint": data.get("legacy_login_hint"),
+        "max_logo_size": MAX_LOGO_SIZE,
+    }
+    return jsonify(response)
 
 
 @app.route("/api/setup", methods=["POST"])
 def api_setup() -> Any:
     data = load_store()
-    if data.get("password_hash"):
-        return jsonify({"error": "Aplikacja zostala juz skonfigurowana."}), 400
-
     payload = request.get_json(force=True)
+    try:
+        email_key, display_email = normalize_email(payload.get("email", ""))
+    except ValueError as error:
+        return jsonify({"error": str(error)}), 400
+
+    accounts = get_accounts(data)
+    existing_key, existing_account = find_account_identifier(accounts, display_email)
+    if existing_key and existing_account:
+        return jsonify({"error": "Podany adres email jest juz zajety."}), 400
+
     required_fields = [
         "company_name",
         "owner_name",
@@ -279,62 +442,83 @@ def api_setup() -> Any:
         "city",
         "tax_id",
         "bank_account",
-        "password",
     ]
 
     missing = [field for field in required_fields if not (payload.get(field) or "").strip()]
     if missing:
         return jsonify({"error": f"Brakuje pol: {', '.join(missing)}"}), 400
 
-    if len(payload["password"]) < 4:
-        return jsonify({"error": "Haslo musi miec co najmniej 4 znaki."}), 400
-
-    data["business"] = {
-        "company_name": payload["company_name"].strip(),
-        "owner_name": payload["owner_name"].strip(),
-        "address_line": payload["address_line"].strip(),
-        "postal_code": payload["postal_code"].strip(),
-        "city": payload["city"].strip(),
-        "tax_id": payload["tax_id"].strip(),
-        "bank_account": payload["bank_account"].strip(),
+    password = (payload.get("password") or "").strip()
+    if len(password) < PASSWORD_MIN_LENGTH:
+        return jsonify({"error": f"Haslo musi miec co najmniej {PASSWORD_MIN_LENGTH} znakow."}), 400
+
+    new_account = {
+        "login": display_email,
+        "email": display_email,
+        "password_hash": hash_password(password),
+        "business": {
+            "company_name": payload["company_name"].strip(),
+            "owner_name": payload["owner_name"].strip(),
+            "address_line": payload["address_line"].strip(),
+            "postal_code": payload["postal_code"].strip(),
+            "city": payload["city"].strip(),
+            "tax_id": payload["tax_id"].strip(),
+            "bank_account": payload["bank_account"].strip(),
+        },
+        "invoices": [],
+        "logo": None,
+        "created_at": datetime.utcnow().isoformat(timespec="seconds"),
     }
-    data["password_hash"] = hash_password(payload["password"])
-    data.setdefault("invoices", [])
 
+    accounts[email_key] = new_account
+    data.pop("legacy_login_hint", None)
     save_store(data)
-    return jsonify({"message": "Dane zapisane. Mozesz sie zalogowac."})
+    return jsonify({"message": "Konto utworzone. Mozesz sie zalogowac."})
 
 
 @app.route("/api/login", methods=["POST"])
 def api_login() -> Any:
     payload = request.get_json(force=True)
+    identifier_raw = (payload.get("email") or payload.get("login") or "").strip()
     password = (payload.get("password") or "").strip()
+    if not identifier_raw:
+        return jsonify({"error": "Podaj adres email."}), 400
     data = load_store()
 
-    if not data.get("password_hash"):
-        return jsonify({"error": "Aplikacja nie zostala skonfigurowana."}), 400
+    accounts = get_accounts(data)
+    login_key, account = find_account_identifier(accounts, identifier_raw)
+    if not account:
+        return jsonify({"error": "Nieprawidlowy email lub haslo."}), 401
 
-    if hash_password(password) != data["password_hash"]:
-        return jsonify({"error": "Nieprawidlowe haslo."}), 401
+    stored_hash = account.get("password_hash")
+    if not stored_hash:
+        return jsonify({"error": "Konto nie zostalo jeszcze skonfigurowane."}), 400
+    if hash_password(password) != stored_hash:
+        return jsonify({"error": "Nieprawidlowy email lub haslo."}), 401
 
-    token = create_token()
-    return jsonify({"token": token})
+    token = create_token(login_key or (identifier_raw.lower()))
+    display_email = account.get("email") or account.get("login") or identifier_raw
+    return jsonify({"token": token, "login": account.get("login", display_email), "email": display_email})
 
 
 @app.route("/api/business", methods=["GET", "PUT"])
 def api_business() -> Any:
     try:
-        require_auth()
+        login_key = require_auth()
     except PermissionError:
         return jsonify({"error": "Brak autoryzacji."}), 401
 
     data = load_store()
+    try:
+        account = get_account(data, login_key)
+    except KeyError:
+        return jsonify({"error": "Nie znaleziono konta."}), 404
+
     if request.method == "GET":
-        ensure_configured(data)
-        return jsonify({"business": data["business"]})
+        return jsonify({"business": account.get("business")})
 
     payload = request.get_json(force=True)
-    current = data.get("business") or {}
+    current = account.get("business") or {}
     updated = {
         "company_name": (payload.get("company_name") or current.get("company_name") or "").strip(),
         "owner_name": (payload.get("owner_name") or current.get("owner_name") or "").strip(),
@@ -349,7 +533,7 @@ def api_business() -> Any:
     if missing:
         return jsonify({"error": f"Wypelnij wszystkie pola: {', '.join(missing)}"}), 400
 
-    data["business"] = updated
+    account["business"] = updated
     save_store(data)
     return jsonify({"business": updated})
 
@@ -357,34 +541,268 @@ def api_business() -> Any:
 @app.route("/api/invoices", methods=["POST", "GET"])
 def api_invoices() -> Any:
     try:
-        require_auth()
+        login_key = require_auth()
     except PermissionError:
         return jsonify({"error": "Brak autoryzacji."}), 401
 
     data = load_store()
-    ensure_configured(data)
+    try:
+        account = get_account(data, login_key)
+    except KeyError:
+        return jsonify({"error": "Nie znaleziono konta."}), 404
+    try:
+        ensure_business_configured(account)
+    except ValueError as error:
+        return jsonify({"error": str(error)}), 400
 
     if request.method == "GET":
-        return jsonify({"invoices": data.get("invoices", [])})
+        invoices = list(account.get("invoices", []))
+        start_param = request.args.get("start_date")
+        end_param = request.args.get("end_date")
+        start_date: Optional[date] = None
+        end_date: Optional[date] = None
+        if start_param:
+            try:
+                start_date = datetime.fromisoformat(start_param).date()
+            except ValueError:
+                return jsonify({"error": "Niepoprawny format daty poczatkowej (YYYY-MM-DD)."}), 400
+        if end_param:
+            try:
+                end_date = datetime.fromisoformat(end_param).date()
+            except ValueError:
+                return jsonify({"error": "Niepoprawny format daty koncowej (YYYY-MM-DD)."}), 400
+        if start_date and end_date and start_date > end_date:
+            return jsonify({"error": "Data poczatkowa nie moze byc pozniejsza niz data koncowa."}), 400
+
+        def issued_at_to_datetime(issued_at: str) -> Optional[datetime]:
+            try:
+                return datetime.strptime(issued_at, "%Y-%m-%d %H:%M")
+            except (TypeError, ValueError):
+                return None
+
+        filtered: List[Dict[str, Any]] = []
+        for invoice in invoices:
+            issued_at_str = invoice.get("issued_at")
+            issued_dt = issued_at_to_datetime(issued_at_str)
+            if issued_dt is None:
+                filtered.append(invoice)
+                continue
+            issued_date = issued_dt.date()
+            if start_date and issued_date < start_date:
+                continue
+            if end_date and issued_date > end_date:
+                continue
+            filtered.append(invoice)
+
+        filtered.sort(key=lambda item: item.get("issued_at", ""), reverse=True)
+        return jsonify({"invoices": filtered})
 
     payload = request.get_json(force=True)
     try:
-        invoice = compute_invoice(payload, data["business"])
+        invoice = compute_invoice(payload, account["business"])
     except ValueError as error:
         return jsonify({"error": str(error)}), 400
 
-    invoices = data.setdefault("invoices", [])
+    invoices = account.setdefault("invoices", [])
     invoices.append(invoice)
     if len(invoices) > INVOICE_HISTORY_LIMIT:
-        data["invoices"] = invoices[-INVOICE_HISTORY_LIMIT:]
+        account["invoices"] = invoices[-INVOICE_HISTORY_LIMIT:]
 
     save_store(data)
     return jsonify({"invoice": invoice})
 
 
+@app.route("/api/invoices/<invoice_id>", methods=["GET", "PUT", "DELETE"])
+def api_invoice_detail(invoice_id: str) -> Any:
+    try:
+        login_key = require_auth()
+    except PermissionError:
+        return jsonify({"error": "Brak autoryzacji."}), 401
+
+    data = load_store()
+    try:
+        account = get_account(data, login_key)
+    except KeyError:
+        return jsonify({"error": "Nie znaleziono konta."}), 404
+
+    try:
+        ensure_business_configured(account)
+    except ValueError as error:
+        return jsonify({"error": str(error)}), 400
+
+    invoices = account.setdefault("invoices", [])
+    try:
+        index = next(index for index, inv in enumerate(invoices) if inv.get("invoice_id") == invoice_id)
+    except StopIteration:
+        return jsonify({"error": "Nie znaleziono faktury."}), 404
+
+    current_invoice = invoices[index]
+
+    if request.method == "GET":
+        return jsonify({"invoice": current_invoice})
+
+    if request.method == "DELETE":
+        invoices.pop(index)
+        save_store(data)
+        return jsonify({"message": "Faktura zostala usunieta."})
+
+    payload = request.get_json(force=True)
+    try:
+        updated_invoice = compute_invoice(
+            payload,
+            account["business"],
+            invoice_id=current_invoice.get("invoice_id"),
+            issued_at=current_invoice.get("issued_at"),
+        )
+    except ValueError as error:
+        return jsonify({"error": str(error)}), 400
+
+    invoices[index] = updated_invoice
+    save_store(data)
+    return jsonify({"invoice": updated_invoice})
+
+
+@app.route("/api/logo", methods=["GET", "POST", "DELETE"])
+def api_logo() -> Any:
+    try:
+        login_key = require_auth()
+    except PermissionError:
+        return jsonify({"error": "Brak autoryzacji."}), 401
+
+    data = load_store()
+    try:
+        account = get_account(data, login_key)
+    except KeyError:
+        return jsonify({"error": "Nie znaleziono konta."}), 404
+
+    if request.method == "GET":
+        logo = account.get("logo")
+        if not logo:
+            return jsonify({"logo": None})
+        encoded = logo.get("data")
+        mime_type = logo.get("mime_type")
+        data_url = None
+        if encoded and mime_type:
+            data_url = f"data:{mime_type};base64,{encoded}"
+        return jsonify(
+            {
+                "logo": {
+                    "filename": logo.get("filename"),
+                    "mime_type": mime_type,
+                    "data": encoded,
+                    "data_url": data_url,
+                    "uploaded_at": logo.get("uploaded_at"),
+                }
+            }
+        )
+
+    if request.method == "DELETE":
+        account["logo"] = None
+        save_store(data)
+        return jsonify({"message": "Logo zostalo usuniete."})
+
+    payload = request.get_json(force=True)
+    raw_content = (payload.get("content") or payload.get("data") or "").strip()
+    if not raw_content:
+        return jsonify({"error": "Brak danych logo."}), 400
+
+    provided_mime = (payload.get("mime_type") or "").strip()
+    filename = sanitize_filename(payload.get("filename"))
+
+    if raw_content.startswith("data:"):
+        try:
+            header, encoded_content = raw_content.split(",", 1)
+        except ValueError:
+            return jsonify({"error": "Niepoprawny format danych logo."}), 400
+        header = header.strip()
+        if ";base64" not in header:
+            return jsonify({"error": "Niepoprawny format danych logo (oczekiwano base64)."}), 400
+        mime_type = header.split(";")[0].replace("data:", "", 1) or provided_mime
+        base64_content = encoded_content.strip()
+    else:
+        mime_type = provided_mime
+        base64_content = raw_content
+
+    mime_type = (mime_type or "").lower()
+    if mime_type not in ALLOWED_LOGO_MIME_TYPES:
+        return jsonify({"error": "Dozwolone formaty logo to PNG lub JPG."}), 400
+
+    try:
+        logo_bytes = base64.b64decode(base64_content, validate=True)
+    except (ValueError, binascii.Error):
+        return jsonify({"error": "Nie udalo sie odczytac danych logo (base64)."}), 400
+
+    if len(logo_bytes) > MAX_LOGO_SIZE:
+        return jsonify({"error": f"Logo jest zbyt duze (maksymalnie {MAX_LOGO_SIZE // 1024} KB)."}), 400
+
+    stored_logo = {
+        "filename": filename,
+        "mime_type": mime_type,
+        "data": base64.b64encode(logo_bytes).decode("ascii"),
+        "uploaded_at": datetime.utcnow().isoformat(timespec="seconds"),
+    }
+
+    account["logo"] = stored_logo
+    save_store(data)
+    return jsonify({"logo": stored_logo})
+
+
+@app.route("/api/invoices/summary", methods=["GET"])
+def api_invoice_summary() -> Any:
+    try:
+        login_key = require_auth()
+    except PermissionError:
+        return jsonify({"error": "Brak autoryzacji."}), 401
+
+    data = load_store()
+    try:
+        account = get_account(data, login_key)
+    except KeyError:
+        return jsonify({"error": "Nie znaleziono konta."}), 404
+
+    try:
+        ensure_business_configured(account)
+    except ValueError as error:
+        return jsonify({"error": str(error)}), 400
+
+    now = datetime.utcnow()
+    last_month_start = now - timedelta(days=30)
+    quarter_first_month = ((now.month - 1) // 3) * 3 + 1
+    quarter_start = now.replace(month=quarter_first_month, day=1, hour=0, minute=0, second=0, microsecond=0)
+    year_start = now.replace(month=1, day=1, hour=0, minute=0, second=0, microsecond=0)
+
+    def parse_issued_at(value: Optional[str]) -> Optional[datetime]:
+        if not value:
+            return None
+        try:
+            return datetime.strptime(value, "%Y-%m-%d %H:%M")
+        except ValueError:
+            return None
+
+    def aggregate(start: datetime) -> Dict[str, Any]:
+        count = 0
+        gross_total = Decimal("0.00")
+        for invoice in account.get("invoices", []):
+            issued_dt = parse_issued_at(invoice.get("issued_at"))
+            if issued_dt is None or issued_dt < start:
+                continue
+            count += 1
+            gross_value = invoice.get("totals", {}).get("gross", "0")
+            try:
+                gross_total += _decimal(gross_value)
+            except ValueError:
+                continue
+        return {"count": count, "gross_total": str(_quantize(gross_total))}
+
+    summary = {
+        "last_month": aggregate(last_month_start),
+        "quarter": aggregate(quarter_start),
+        "year": aggregate(year_start),
+    }
+
+    return jsonify({"summary": summary})
+
+
 if __name__ == "__main__":
-    port = int(os.environ.get("PORT", "7860"))
+    port = int(os.environ.get("PORT", "5000"))
     app.run(host="0.0.0.0", port=port, debug=True)
-
-    DATA_DIR = Path(os.environ.get("DATA_DIR", APP_ROOT))
-DATA_FILE = DATA_DIR / "web_invoice_store.json"

styles.css

@@ -0,0 +1,705 @@
+:root {
+  --bg: #f5f5f5;
+  --panel-bg: #ffffff;
+  --text: #202124;
+  --muted: #5f6368;
+  --accent: #1a73e8;
+  --danger: #c5221f;
+  --border: #dadce0;
+  --radius: 10px;
+  --shadow: 0 10px 30px rgba(0, 0, 0, 0.08);
+  font-family: "Roboto", "Segoe UI", Tahoma, sans-serif;
+}
+
+* {
+  box-sizing: border-box;
+}
+
+body {
+  margin: 0;
+  background: linear-gradient(180deg, #f7f9fc 0%, #eef1f6 100%);
+  color: var(--text);
+}
+
+.container {
+  max-width: 980px;
+  margin: 0 auto;
+  padding: 40px 20px 64px;
+}
+
+.header-section {
+  display: flex;
+  flex-direction: column;
+  align-items: center;
+  gap: 16px;
+  margin-bottom: 32px;
+  text-align: center;
+}
+
+.logo-container {
+  display: flex;
+  flex-direction: column;
+  align-items: center;
+  gap: 12px;
+}
+
+.logo {
+  max-width: 180px;
+  height: auto;
+  border-radius: 8px;
+  box-shadow: 0 4px 12px rgba(0, 0, 0, 0.1);
+}
+
+.app-title {
+  text-align: center;
+  font-size: 24px;
+  margin: 0;
+  font-weight: 600;
+}
+
+.app-description {
+  text-align: center;
+  font-size: 16px;
+  color: var(--muted);
+  line-height: 1.5;
+  margin: 0;
+  max-width: 600px;
+}
+
+.panel {
+  background: var(--panel-bg);
+  border-radius: var(--radius);
+  box-shadow: var(--shadow);
+  padding: 28px 32px;
+  margin-bottom: 32px;
+  border: 1px solid rgba(32, 33, 36, 0.08);
+}
+
+.auth-card {
+  border: 1px solid rgba(32, 33, 36, 0.12);
+  border-radius: var(--radius);
+  padding: 24px 28px;
+  background: #f9fbff;
+  display: grid;
+  gap: 18px;
+  max-width: 520px;
+  margin: 0 auto;
+  width: 100%;
+}
+
+.auth-login {
+  display: flex;
+  justify-content: center;
+}
+
+.login-card {
+  width: 100%;
+}
+
+#register-section {
+  display: flex;
+  justify-content: center;
+}
+
+#register-section .register-card {
+  max-width: 640px;
+  width: 100%;
+}
+
+.register-header {
+  display: flex;
+  justify-content: space-between;
+  align-items: center;
+  gap: 16px;
+}
+
+.auth-card h3 {
+  margin: 0;
+}
+
+.auth-card .form {
+  gap: 18px;
+  width: 100%;
+}
+
+
+.auth-actions {
+  margin-top: 4px;
+
+  display: flex;
+  flex-direction: column;
+  align-items: center;
+  justify-content: center;
+  gap: 10px;
+  font-size: 14px;
+  color: var(--muted);
+  text-align: center;
+}
+
+.ghost-button {
+  padding: 10px 20px;
+  border: 1px solid var(--accent);
+  border-radius: 8px;
+  background: transparent;
+  color: var(--accent);
+  font-weight: 600;
+  cursor: pointer;
+  transition: background 0.2s ease, color 0.2s ease;
+}
+
+.ghost-button:hover {
+  background: rgba(26, 115, 232, 0.12);
+}
+
+.form-divider {
+  border: none;
+  border-top: 1px solid var(--border);
+  margin: 16px 0 0;
+}
+
+.register-fields {
+  display: grid;
+  gap: 24px;
+}
+
+.register-credentials {
+  grid-template-columns: repeat(auto-fit, minmax(220px, 1fr));
+}
+
+.register-company {
+  grid-template-columns: repeat(auto-fit, minmax(220px, 1fr));
+}
+
+.hidden {
+  display: none;
+}
+
+.form {
+  display: grid;
+  gap: 20px;
+}
+
+.field-grid {
+  display: grid;
+  gap: 18px 24px;
+  grid-template-columns: repeat(auto-fit, minmax(220px, 1fr));
+}
+
+label {
+  display: grid;
+  gap: 8px;
+  font-weight: 600;
+  font-size: 15px;
+}
+
+input,
+textarea,
+select {
+  padding: 12px 14px;
+  border-radius: 8px;
+  border: 1px solid var(--border);
+  font-size: 15px;
+  background: #fbfbff;
+}
+
+input:focus,
+textarea:focus,
+select:focus {
+  outline: 2px solid rgba(26, 115, 232, 0.35);
+  outline-offset: 1px;
+  border-color: var(--accent);
+  background: #ffffff;
+}
+
+textarea {
+  resize: vertical;
+  min-height: 96px;
+}
+
+#exemption-note-wrapper {
+  display: grid;
+  gap: 12px;
+}
+
+#exemption-note-wrapper textarea[readonly] {
+  background: #f4f6fb;
+  color: var(--muted);
+}
+
+button {
+  padding: 12px 20px;
+  border-radius: 8px;
+  border: none;
+  font-size: 15px;
+  font-weight: 600;
+  background: var(--accent);
+  color: white;
+  cursor: pointer;
+  transition: background 0.2s ease;
+}
+
+button:hover {
+  background: #0f5ec4;
+}
+
+.button {
+  display: inline-flex;
+  align-items: center;
+  justify-content: center;
+  gap: 8px;
+  padding: 12px 20px;
+  border-radius: 8px;
+  border: none;
+  font-size: 15px;
+  font-weight: 600;
+  background: var(--accent);
+  color: #ffffff;
+  cursor: pointer;
+  transition: background 0.2s ease;
+}
+
+.button.secondary {
+  background: rgba(26, 115, 232, 0.12);
+  color: var(--accent);
+  border: 1px solid rgba(26, 115, 232, 0.25);
+}
+
+.button.secondary:hover {
+  background: rgba(26, 115, 232, 0.2);
+}
+
+.button input[type="file"] {
+  display: none;
+}
+
+button:disabled {
+  opacity: 0.6;
+  cursor: not-allowed;
+}
+
+.link-button {
+  background: none;
+  color: var(--accent);
+  padding: 0;
+}
+
+.link-button:hover {
+  color: #0f5ec4;
+  background: none;
+}
+
+.hint {
+  color: var(--muted);
+  font-size: 13px;
+  margin: 0;
+}
+
+.feedback {
+  color: var(--muted);
+  min-height: 20px;
+  font-size: 14px;
+}
+
+.feedback:empty {
+  display: none;
+}
+
+.feedback.error {
+  color: var(--danger);
+}
+
+.feedback.success {
+  color: #188038;
+}
+
+.app-header {
+  display: flex;
+  justify-content: space-between;
+  align-items: center;
+  margin-bottom: 24px;
+  flex-wrap: wrap;
+  gap: 16px;
+}
+
+.app-subtitle {
+  margin: 4px 0 0;
+  color: var(--muted);
+  font-size: 14px;
+}
+
+.app-nav {
+  display: flex;
+  align-items: center;
+  gap: 8px;
+  flex-wrap: wrap;
+}
+
+.app-nav-button {
+  background: rgba(26, 115, 232, 0.12);
+  color: var(--accent);
+  border: 1px solid rgba(26, 115, 232, 0.25);
+}
+
+.app-nav-button:hover {
+  background: rgba(26, 115, 232, 0.2);
+}
+
+.app-nav-button.active {
+  background: var(--accent);
+  color: #ffffff;
+}
+
+.app-nav-button.active:hover {
+  background: #0f5ec4;
+}
+
+.business-section {
+  border: 1px solid rgba(32, 33, 36, 0.08);
+  border-radius: var(--radius);
+  padding: 20px 24px;
+  background: #fbfcff;
+  margin-bottom: 24px;
+}
+
+.app-view {
+  display: grid;
+  gap: 24px;
+}
+
+.business-section-header {
+  display: flex;
+  justify-content: space-between;
+  align-items: center;
+  margin-bottom: 12px;
+}
+
+.business-actions {
+  display: flex;
+  gap: 12px;
+  flex-wrap: wrap;
+  align-items: center;
+}
+
+.business-display {
+  font-size: 15px;
+  line-height: 1.4;
+}
+
+.business-display-grid {
+  display: grid;
+  gap: 12px;
+  grid-template-columns: repeat(auto-fit, minmax(180px, 1fr));
+}
+
+.business-display-item {
+  display: flex;
+  flex-direction: column;
+  gap: 4px;
+}
+
+.business-display-item strong {
+  font-weight: 600;
+}
+
+.logo-preview {
+  margin-top: 16px;
+  border: 1px solid var(--border);
+  border-radius: 8px;
+  padding: 12px;
+  display: grid;
+  gap: 8px;
+  max-width: 260px;
+  background: #ffffff;
+}
+
+.logo-preview-label {
+  font-size: 12px;
+  text-transform: uppercase;
+  letter-spacing: 0.05em;
+  color: var(--muted);
+  font-weight: 600;
+}
+
+.logo-preview img {
+  max-width: 100%;
+  max-height: 120px;
+  object-fit: contain;
+}
+
+.form-actions {
+  display: flex;
+  align-items: center;
+  gap: 16px;
+}
+
+.items-section {
+  border: 1px solid rgba(32, 33, 36, 0.08);
+  border-radius: var(--radius);
+  padding: 20px 24px;
+  background: #ffffff;
+  display: grid;
+  gap: 18px;
+}
+
+.items-header {
+  display: flex;
+  justify-content: space-between;
+  align-items: center;
+}
+
+.items-table-wrapper {
+  overflow-x: auto;
+}
+
+.items-table {
+  width: 100%;
+  border-collapse: collapse;
+  font-size: 14px;
+}
+
+.items-table th,
+.items-table td {
+  border: 1px solid var(--border);
+  padding: 10px 12px;
+  text-align: left;
+}
+
+.items-table th {
+  background: #f1f3f7;
+  font-weight: 600;
+  text-transform: uppercase;
+  letter-spacing: 0.02em;
+}
+
+.items-table input,
+.items-table select {
+  width: 100%;
+  padding: 8px 10px;
+  border-radius: 6px;
+  border: 1px solid var(--border);
+  background: #ffffff;
+}
+
+.items-table .remove-item {
+  color: var(--danger);
+  background: none;
+  padding: 0;
+}
+
+.items-table .remove-item:hover {
+  text-decoration: underline;
+}
+
+.totals {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 16px;
+  font-weight: 600;
+  margin-top: 8px;
+  padding: 12px 16px;
+  border-radius: 8px;
+  background: #f7f9ff;
+}
+
+.rate-summary {
+  display: grid;
+  gap: 10px;
+  margin-top: 8px;
+}
+
+.rate-summary-item {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 12px;
+  font-weight: 600;
+  padding: 8px 12px;
+  border: 1px dashed rgba(26, 115, 232, 0.25);
+  border-radius: 6px;
+  background: #ffffff;
+}
+
+.invoice-preview {
+  display: grid;
+  gap: 24px;
+}
+
+.invoice-preview-meta {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 24px;
+  font-size: 14px;
+}
+
+.invoice-preview-meta span {
+  display: inline-flex;
+  align-items: center;
+  gap: 6px;
+}
+
+.invoice-preview-header {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 24px;
+}
+
+.invoice-preview-card {
+  flex: 1 1 280px;
+  border: 1px solid var(--border);
+  border-radius: var(--radius);
+  padding: 16px 20px;
+  background: #f9fafc;
+}
+
+.invoice-preview-card h4 {
+  margin: 0 0 12px;
+  font-size: 14px;
+  text-transform: uppercase;
+  letter-spacing: 0.05em;
+}
+
+.invoice-preview-card p {
+  margin: 4px 0;
+  font-size: 14px;
+}
+
+.invoice-preview table {
+  width: 100%;
+  border-collapse: collapse;
+  font-size: 14px;
+}
+
+.invoice-preview th,
+.invoice-preview td {
+  border: 1px solid var(--border);
+  padding: 10px 12px;
+  text-align: left;
+}
+
+.invoice-preview th {
+  background: #f1f3f7;
+  font-weight: 600;
+}
+
+.invoice-preview-summary {
+  display: flex;
+  justify-content: flex-end;
+  flex-wrap: wrap;
+  gap: 16px;
+  font-weight: 600;
+  font-size: 15px;
+}
+
+.invoice-preview-note {
+  padding: 12px 16px;
+  border-left: 3px solid var(--accent);
+  background: #f4f8ff;
+  font-size: 14px;
+}
+
+.dashboard-header {
+  display: flex;
+  flex-wrap: wrap;
+  align-items: center;
+  justify-content: space-between;
+  gap: 16px;
+}
+
+.filters {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 16px;
+  align-items: flex-end;
+}
+
+.dashboard-summary {
+  display: grid;
+  gap: 16px;
+  margin: 24px 0;
+  grid-template-columns: repeat(auto-fit, minmax(200px, 1fr));
+}
+
+.summary-card {
+  border: 1px solid rgba(32, 33, 36, 0.08);
+  border-radius: var(--radius);
+  background: #fbfcff;
+  padding: 16px;
+  display: grid;
+  gap: 6px;
+}
+
+.summary-label {
+  font-size: 13px;
+  font-weight: 600;
+  color: var(--muted);
+  text-transform: uppercase;
+  letter-spacing: 0.05em;
+}
+
+.summary-count {
+  font-size: 20px;
+  font-weight: 700;
+}
+
+.summary-amount {
+  font-size: 16px;
+  font-weight: 600;
+  color: var(--accent);
+}
+
+.dashboard-chart {
+  border: 1px solid rgba(32, 33, 36, 0.08);
+  border-radius: var(--radius);
+  background: #ffffff;
+  padding: 16px;
+}
+
+.dashboard-table .items-table th,
+.dashboard-table .items-table td {
+  white-space: nowrap;
+}
+
+.dashboard-table .items-table td:last-child {
+  width: 160px;
+}
+
+.table-actions {
+  display: flex;
+  flex-wrap: wrap;
+  gap: 8px;
+}
+
+#invoices-empty {
+  margin-top: 12px;
+  text-align: center;
+}
+
+@media (max-width: 640px) {
+  .panel {
+    padding: 20px;
+  }
+
+  .header-section {
+    flex-direction: column;
+    text-align: center;
+    gap: 16px;
+  }
+
+  .logo {
+    max-width: 150px;
+  }
+
+  .app-title {
+    font-size: 20px;
+  }
+
+  .app-header {
+    flex-direction: column;
+    gap: 12px;
+    align-items: flex-start;
+  }
+
+  .business-section,
+  .items-section {
+    padding: 16px;
+  }
+}